Elementary 
Number Theory 


Second Edition 


David M. Burton 


LIT 


mA UESTD 


uss Publishers’ Distributors Ltd 


8/1-8, Chowrinr' 
Ph:212451, 249473 


‘e Lanu, Calcutta-700 016 


. Elementary Number 
. Theory 


Elementary Number 
Theory T Second Edition 


| David M. Burton 


| University of New Hampshire 


M DELIA BOOK STALL 
| NEW DEL 


Copyright © 1989 by Wm. C. Brown Publishers. All rights 


4. 
reserve aR 
wae (6.5. гта 
Бет. > |2 [19 a 
No part of this publication may be reproduced, stored in a 
retrieval system, or transmitted, in any form or by any 
means, electronic, mechanical, photocopying, recording, 


or otherwise, without the prior written permission of the 
publisher. 


First Indian Reprint 1990 


For sale in India only. 


Universal Book Stall 
5 Ansari Road, New Delhi-110 002 


ISBN 81-85392-69-2 


Printed at Pearl Offset Press, 5/33, Kirti Nagar Industrial 
Area, New Delhi-110 015 


То Martha 


ож yi y ? 


CONTENTS 


Preface x 


Chapter 1. Some Preliminary Considerations 1 
1.1 Mathematical Induction 2 
1.2 The Binomial Theorem 10 
1.3 Early Number Theory 15 


Chapter 2. Divisibility Theory in the Integers 21 
2.1 The Division Algorithm 22 
2.2 The Greatest Common Divisor 26 
2.3 The Euclidean Algorithm 34 
2.4 The Diophantine Equation ax + by = с 42 


Chapter 3. Primes and Their Distribution 51 
3.1 The Fundamental Theorem of Arithmetic 52 
3.2 The Sieve of Eratosthenes 59 
3.3 The Goldbach Conjecture 66 


Chapter 4. The Theory of Congruences 79 
4.1 Karl Friedrich Gauss 80 
4.2 Basic Properties of Congruence 82 
4.3 Special Divisibility Tests 89 
4.4 Linear Congruences 96 


Chapter 5. Fermat’s Theorem 107 
5.1 Pierre de Fermat 108 
5.2 Fermat's Factorization Method | 110 
5.3 The Little Theorem | 113 
5.4 Wilson's Theorem 121 


Chapter 6. Number-Theoretic Functions 127 
6.1 The Functions тапас 128 
6.2 The Móbius Inversion Formula 139 
6.3 The Greatest Integer Function 145 


Chapter 7. Euler's Generalization of Fermat's Theorem 153 
7.1 Leonhard Euler 154 
7.2 Euler's Phi-Function 156 
7.3 Euler's Theorem 163 
7.4 Some Properties of the Phi-Function 169 
7.5 An Application to Cryptography 175 


vii 


Chapter 8. Primitive Roots and Indices 183 
8.1 The Order of an Integer Modulo n 184 
8.2 Primitive Roots for Primes 191 
8.3 Composite Numbers Having Primitive Roots. 199 
8.4 The Theory of Indices 206 


Chapter 9. The Quadratic Reciprocity Law 213 
9.1 Euler's Criterion 214 
9.2 The Legendre Symbol and its Properties 221 
9.3 Quadratic Reciprocity 234 
9.4 Quadratic Congruences with Composite Moduli 243 


Chapter 10. Perfect Numbers 249 
10.1 The Search for Perfect Numbers 250 
10.2 Mersenne Primes . 258 
10.3 Fermat Numbers 271 


Chapter 11. The Fermat Conjecture 281 
11.1 Pythagorean Triples 282 
11.2 The Famous "Last Theorem” 291 


Chapter 12. Representation of Integers as Sums of Squares 301 
12.1 Joseph Louis Lagrange 302 
12.2 Sums of Two Squares 304 
12.3 Sums of More than Two Squares 315 


Chapter 13. Fibonacci Numbers and Continued Fractions 329 
13.1 The Fibonacci Sequence 330 
13.2 Certain Identities Involving Fibonacci Numbers :338 
13.3 Finite Continued Fractions 345 
13.4 Infinite Continued Fractions 362 
13.5 Pell's Equation 379 


Appendixes. 395 
The Prime Number Theorem . 396 
References 405 
Suggestions for Further Reading 409 
Tables 413 
Answers to Selected Problems 437 
Index 447 


PREFACE TO THE SECOND 
EDITION 


It is my hope that this second edition will continue to function as a rea- 
sonably complete introduction to the elementary portions of number 
theory. While it maintains the basic structure of the previous edition, 
there have been a large number of minor changes and a few major ones. 
Among the substantial changes is an entirely new section in chapter 7 
(“Ап Application to Cryptography”) describing a recent application of 
number theory to computer security. The section on Fermat Numbers 
has been amplified somewhat by the inclusion of Pepin's Test and Lu- 
cas's Theorem. Another pronounced change is the introduction of a va- 
riety of new topics; especially notable are Merten's conjecture, absolute 
pseudoprimes, amicable number pairs, and primes in arithmetic рго- 
gression. Many of the problem sets have been augmented by the addi- 
tion of some 150 exercises, so that well over 600 are now included. The 
minor changes involve updating numerical information in light of the 
current activity in the subject. 

We are grateful to the readers who pointed out the errors that 
appear inevitable in a first edition and who suggested improvements in 
the exposition. Although not all recommendations were adopted during 
the process of revision, they were all seriously considered. 


D. M. B. 


VODI? 3HEOT. 
AOIVIGA 


чора sehen bine ISAT r 
sands sts at airan enta Rid 
a ZEN COEM hito оды sjuke ; 
jS S MM mes коне таса idi gt e 
YR ib my vaia raat Toa hs a 


SEW xs 
fom riv 
v ny ето P 
"UIS s alpin fidi: 
yon ah estan Da: iat o v fede. omm 2 
ud và Ix MA Pon aet пора т Ka PEM 


tig eh PR First ns Hoc gnimiqu РТТ аж 3 


„ХЭН DE Tuo оёти 


da al a 


i ————————— 


PREFACE 


Plato said, "God is a geometer." Jacobi changed this to, "God is an ar- 
itbmetician." Then came Kronecker and fashioned the memorable 
expression, “God created the natural numbers, and all the rest is the 
work of man." 


FELIX KLEIN 


The purpose of the present volume is to give a simple account of clas- 
sical number theory, as well as to impart some of the historical back- 
ground in which the subject evolved. While primarily intended for use 
as a textbook in a one-semester course at the undergraduate level, it is 
designed to be utilized in teachers’ institutes or as supplementary reading 
in mathematics survey courses. The work is well suited for prospective 
secondary school teachers for whom the familiarity with a little number 
theory may be particularly helpful. 

The theory of numbers has always occupied a unique position 
in the world of mathematics. This is due to the unquestioned historical 
importance of the subject: it is one of the few disciplines having de- 
monstrable results which predate the very idea of a university or an 
academy. Nearly every century since classical antiquity has witnessed 
new and fascinating discoveries relating to the properties of numbers; 
and, at some point in their careers, most of the great masters of the math- 
ematical sciences have contributed to this body of knowledge. Why has 
number theory held such an irresistible appeal for the leading mathe- 
maticians and for thousands of amateurs? One answer lies in the basic 
nature of its problems. While many questions in the field are extremely 
hard to decide, they can be formulated in terms simple enough to arouse 
the interest and curiosity of those without much mathematical training. 
Some of the simplest sounding questions have withstood the intellec- 
tual assaults of ages and remain among the most elusive unsolved prob- 
lems in the whole of mathematics. 

It therefore comes as something of a surprise to find out how 
many students look upon number theory with good-humored indul. 
gence, regarding it as a frippery on the edge of mathematics. This no 
doubt stems from the view that it is the most obviously useless branch 


————————————————— 


of pure mathematics; results in this area have few applications to prob- 
lems concerning the physical world. At a time when "theoretical sci- 
ence" is treated with impatience, one commonly encounters the 
mathematics major who knows little or no number theory. This is es- 
pecially unfortunate, since the elementary theory of numbers should be 
one of the very best subjects for early mathematical instruction. It re- 
quires no long preliminary training, the content is tangible and familiar, 
and—more than in any other part of mathematics—the methods of in- 
quiry adhere to the scientific approach. The studéfit working in the field 
must rely to a large extent upon trial and error, in Combination with his 
own curiosity, intuition, and ingenuity; nowhere else if: the mathemat- 
ical disciplines is rigorous proof so often preceded by patient, plodding 
experiment. If the going occasionally becomes slow and difficult, one 
can take comfort in the fact that nearly every noted mathematician of the 
past has traveled the same arduous road. 

There is a dictum which says that anyone who desires to get at 
the root of a subject should first study its history. Endorsing this, we have 
taken pains to fit the material into the larger historical frame. In addition 
to enlivening the theoretical side of the text, the historical remarks woven 
into the presentation bring out the point that number theory is not a 
dead art, but a living one fed by the efforts of many practitioners. They 
reveal that the discipline developed bit by bit, with the work of each 
individual contributor built upon the research of many others; often cen- 
turies of endeavor were required before significant steps were made. 
Once the student is aware of how people of genius stumbled and groped 
their way through the creative process to arrive piecemeal at their re- 
sults, he is less likely to be discouraged by his own fumblings with the 
homework problems. 

А word about the problems. Most sections close with a substan- 
tial number of them ranging in difficulty from the purely mechanical to 
challenging theoretical questions. These are an integral part of the book 
and require the reader's active participation, for nobody can learn number 
theory without solving problems. The computational exercises develop 


j 


(a) о аж, т.о СЕ EE 


—— —о— 


basic techniques and test understanding of concepts, while those of a 
theoretical nature give practice in constructing proofs. Besides con- 
veying additional information about the material covered earlier, the 
problems introduce a variety of ideas not treated in the body of the text. 
We have on the whole resisted the temptation to use the problems to 
introduce results that will be needed thereafter. As a consequence, the 
reader need not work all the exercises in order to digest the rest of the 
book. Problems whose solutions do not appear straightforward are fre- 
quently accompanied by hints. 

Although the text was written with the mathematics major in 
mind, very little is demanded in the way of formal prerequisites; it could 
be profitably read by anyone having a sound background in high school 
mathematics. In particular, a knowledge of the concepts of abstract al- 
gebra is not assumed. When used for students who have had such а course 
(say, at the level represented by the book Introduction to Modern Al- 
gebra by Neal McCoy or the author's own Introduction to Modern Ab- 
stract Algebra), much of the first four chapters can be omitted. 

From a perusal of the table of contents, it is apparent that our 
treatment includes more material than can be covered satisfactorily 
during a one-semester course. This should provide the flexibility desir- 
able for a diverse audience; it permits the instructor to choose topics in 
accordance with personal tastes and it presents the students with the 
opportunity for further reading in the subject. Experience indicates that 
a standard course can be built up from Chapters 1 through 9; if the oc- 
casion demands, Sections 6.2, 6.3, 7.4, 8.4, and 9.4 may be deleted from 
the program without destroying the continuity. Since the last four chap- 
ters are entirely independent of each other, they may be taken up at plea- 
sure. 

This revised printing of the text has been prepared in response 
to comments made by many users. The primary change is the addition 
of infinite continued fractions and Pell’s Equation in Chapter 13. Prob- 
lems have been added to several sections in the text and many minor 
modifications have been included. 


We would like to take the opportunity to express our deep ap- 
preciation to those mathematicians who read the manuscript in its var- 
ious versions and offered valuable suggestions leading to its 
improvement. Particularly helpful was the advice of the following re- 
viewers: 

L. A. Best, The Open University 

Jack Ceder, University of California at Santa Barbara 

Robert A. Chaffer, Central Michigan University 

Howard Eves, University of Maine 

Frederick Hoffman, Florida Atlantic University 

Neal McCoy, Smith College 

David Outcalt, University of California at Santa Barbara 

Michael Rich, Temple University 

David Roeder, Colorado College 

William W. Smith, University of North Carolina 

Virginia Taylor, Lowell Technical Institute 

Paul Vicknair, California State University at San Bernardino 
A special debt of gratitude must go to my wife, Martha, whose generous 
assistance with the book at all stages of development was indispensable. 

It remains to acknowledge the fine cooperation of the staff of 
Allyn and Bacon and the usual high quality of their work. The author 
must, of course, accept the responsibility for any errors or shortcomings 
that remain. 


Durham, New Hampshire DaviD M. BURTON 
January, 1980 


3 


Rud E ВИНЫ 
ga ао 


0071 


| 


(OSZI-O8IT) Poruoqra - | | 


0001 


GOnrid 1VOISS V1» 


peso Җ2од Jo итогу 


mmm (052 `2) smuegdoiq 


wmm (001 2) SnQoEUIODIN 


(a 961-942) seuauisoiera 


| 


wmm (2 056 ^2) prona 


| 


mmm (> 005-695) звозециа 


008 009 00 002 ау |29 00z— 00#— 009— 008— 


&:0эцІ Joquiny Jo 4303stH эці ur заэо поза заеррешэчзей 


0661 


1161) 8199125 apy 

(2961-1181) Áp3EH p[OIEH Аэцроэ 
(561-481) uosxoiq эчэ8пя рзеџоәт 
(2961-9981) UIssnog эЭПЕЛ BI Әр sape» 
(с261-981) onu. [oxv 
(€$61-Z981) иэайн рілға 
(LZ61-1981) 2109 uos[aN youapary 
(8Z61-Z$81) ureqSuruun?) udosof uai 
(1681-2981) seonT prenopa 
(9I61-1€81) ршҳәрәа рлецотя 
(1681-€Z81) 12x22uozy pjodoo 
7S81-€78I) Ulolsuasty ривитраэл 
(F681-1781) 324249эЧ21. `T а 
(E681-0181) зәшшпу 1suya 
(2881-6081) әлпогт udosof 
(6581-5081) IYN лелѕпе) 32134 
(IS81-5081) !qooef лезѕпо) pey 
(0481-56/1) әшет [or1qe5 
(8981-0641) sniqow snisn8ny 
(6581-4241) ssned цэррә pe? 
(€€8I-ZSLT) э1риэ8э1 эыеи чәрру 
(E6LI-IpLI) vost uuof 
(єї8т-96/1) э8ие18еТ sino ydasof 
(B6LI-FEL1) Зиед prepa | 
(€8Z1-LOL1) Jo[n3 preyuosy 


аогияа мчааой 


(¥9L1-0691) uoeqpjoo оета 


0061 0S8I 0081 


06541 


ee eee 


0021 


0591 


(9121-9991) ztuqrs1 рәру:оо = 
(091-S091) Ássog әр әјэүиәля рлеило 
(S991-1091) 1£u1233 эр a3iatd 
(2691-5651) рено рәдгу 
(891-8851) auuasioj UPEW 
и 3эЧ2еа em 
OSST 00st 


Some Preliminary 


Considerations 


“Number was born in 
superstition 
and reared іп mystery, . . . 
numbers were once made the 
foundation of religion and 


philosophy, 


and the tricks of figures 


have had a marvellous effect 


on a credulous people.” 


Е. W. PARKER 


1.1 MATHEMATICAL INDUCTION 


The theory of numbers is concerned, at least in its elementary aspects, 
with properties of the integers and more particularly with the positive 
integers 1, 2, 3,... . (also known as the natural numbers); The origin of 
this misnomer harks back to the early Greeks when the word “number” 
meant positive integer, and nothing else. The natural numbers have been 
known to us for 59 long that the mathematician Kronecker once ге- 
marked, “God created the natural numbers, and all the rest is the work 
of man." Far from being a gift from Heaven, number theory has had a 
long and sometimes painful evolution, a story which we hope to tell in 
the ensuing pages. 

We shall make no attempt to construct the integers axiomati- 
cally, assuming instead that they are already given and that any reader 
of the book is familiar with many elementary facts about them. Among 
these we include the Well-Ordering Principle. To refresh the memory, 
it states: 


WELL-ORDERING PRINCIPLE. Every nonempty set S of nonnegative 
integers contains a least element; that is, there is some integer a 
in S such that a = b for all b belonging to S. 


Since this principle will play a critical role in the proofs here and in 
subsequent chapters, let us utilize it to show that the set of positive in- 
tegers has what is known as the Archimedean Property. 


THEOREM 1-1 (Archimedean Property). Ifa and b are any positive 
integers, then there exists a positive integer n such that па = b. 


Proof: Assume thatthe statement of the theorem is not true, so that 
for some a and b, na < bfor every positive integer п. Then the set 
5 = |b — nal па positive integer] 


consists entirely of positive integers. By the Well-Ordering Prin- 
ciple S will possess a least element, say b — ma. Notice that 


| 


SECTION 1.1 Mathematical Induction 3 


b — (m + 1)aalso lies in S, since 5 contains all integers of this 
form, Furthermore, we have 


b— (m+ 1)a= (b — ma) -а<Ь- ma, 


contrary to the choice of b — та as the smallest integer in 5. This 
‘contradiction arose out of our original assumption that the Archi- 
medean pfoperty did not hold, hence this property is proven true. 


i With the Well-Ordering Principle available, it is an easy matter 
to derive the Principle of Finite Induction. The latter principle provides 
a basis for a method of proof called “mathematical induction.” Loosely 
speaking, the Principle of Finite Induction asserts that if a set of positive 
integers has two specific properties, then it is the set of all positive in- 
tegers. To be less cryptic: 


THEOREM 1-2 (Principle of Finite Induction). Let 5 be a set of pos- 
itive integers with the properties 


(i) 1 belongs to 5, and 
(ii) whenever the integer k is in S, then the next integer k + 1 
must also be in S. 


Then S is the set of all positive integers. 


Proof: Let Tbe the set of all positive integers not in 5, and assume 
that Tis nonempty. The Well-Ordering Principle tells us that T pos- 
sesses a least element, which we denote by a. Since 1 is in 5, cer- 
tainly a> 1 and so 0 < a — 1< a. The choice of aas the smallest 
positive integer in T implies that а — 1 is not a member of 7, or 
equivalently, that а — 1 belongs to 5. By hypothesis, 5 must also 
contain (a — 1) + 1 = a, which contradicts the fact that a lies in 
T. We.conclude that the set Tis empty, and in consequence that $ 
contains all the positive integers. 


Here is a typical formula that can be established by mathemat- 
ical induction: 


_ nant 1)(n + 1) 


(1) 2+2 +32 +... + т 6 


4 Some Preliminary Considerations CHAPTER 1 


forn=1,2,3,....In anticipation of using Theorem 1-2, let $ denote 
the set of all positive integers n for which (1) is true, We observe that 


when п = 1, the formula becomes 
repeat ina DU ESI " 


this means that 1 is in 5. Next, assume that k belongs to $ (where kis а 
fixed but unspecified integer) so that 


(2) VaR et +e fOR* VET YD 


To obtain the sum of the first k + 1 Squares, we merely add the next one, 
(k + 1)?, to both sides of equation (2). This gives 


Раж. нъ (bt НО. 


After some algebraic manipulation, the right-hand side becomes 


(e+ o [grt teu DT gy n [ee] 


, 


— (k+ DQk- 3)(b- 2) 
6 


which is precisely the right-hand member of (1) when n = & + 1. Our 
reasoning shows that the set 5 contains the integer k + 1 whenever it 
contains the integer &. By Theorem 1-2, 5 must be all the positive inte- 
Bers; that is, the given formula is true Юг n = 1,2,3,.... 

While mathematical induction Provides a standard technique for 
attempting to prove a statement about the Positive integers, one disad- 
vantage is that it gives no aid in formulating such statements. Of Course, 
if we can make an “educated guess” at a property which we believe might 
hold in general, then its validity can often be tested by the induction 
Principle. Consider, for instance, the list of equalities 


1=1, 
142-3, 

142-2: -7, 

1+2 +242 = 15, 

1+2 + 22+ 25424 = 31, 
1+2 +224 23425 42 = 63, 


SECTION 1.1 Mathematical Induction 5 


What is sought is a rule which gives the integers on the right-hand side. 
After a little reflection, the reader might notice that 


]- 2 ul ОГС hit Б 
15.=.24— 1, 31=2-1 68=2-—1 


(how опе arrives at this observation is hard to say, but experience helps). 
The pattern emerging from these few cases suggests a formula for ob- 
taining the value of the expression 1 + 2 + 2? + 22 +... + 2"75 
namely, 


(3) 14+2+22423+... + 2" = 2" – 1 


for every positive integer n. 

To confirm that our guess is correct, let $ comprise the set of 
positive integers п for which formula (3) holds. For n = 1, (3) is cer- 
tainly true, whence 1 belongs to the set 5. We assume that (3) is true for 
a fixed integer k, so that for this ё 


1*2424..42-!-2:—1 


and we attempt to prove the validity of the formula for k + 1. Addition 
of the term 2* to both sides of the last-written equation leads to 


1+2+22 +... + 028-16 020 = 201 + 2, 
=2.2.-1= 21+. 1, 


But this says that formula (3) holds when n = k + 1, putting the integer 
k + 1 in 5; so that k + 1 is in $ whenever k is in 5. According to the 
induction principle, $ must be the set of all positive integers. 


REMARK: When giving induction proofs, we shall usually shorten the ar- 
gument by eliminating all reference to the set 5, and proceed to show simply 
that the result in question is true for the integer 1 and if true for the integer 
kis then also true for k + 1. 


We should inject a word of caution at this point, to wit, that one 
must be careful to establish both conditions of Theorem 1-2 before 
drawing any conclusions; neither is sufficient alone. The proof of con. 
dition (i) is usually called the basis for the induction, while the proo! 
of (ii) is called the induction step. The assumptions made in carrying 
out the induction step are known as the induction hypotheses. The in: 
duction situation has been likened to an infinite row of dominoes al: 
standing on edge and arranged in such a way that when one falls it knocks 


6 Some Preliminary Considerations CHAPTER 1 


down the next in line. If either no domino is pushed over (that is, there 
is no basis for the induction) or if the Spacing is too large (that is, the 
induction step fails), then the complete line will not fall. 

The validity of the induction step does not necessarily depend 
on the truth of the statement which one is endeavoring to prove. Let us 
look at the false formula 


(4) 1+3+5 +... + Qn—1) = +3) 
Assume that this holds for n = &; in other words, 

1+3+5+... + (22-1) = B43. 
Knowing this, we then obtain 


LESES.. + (28-1) + 2+ = ++ 2+1 
=(k+1)} +3, 


which is precisely the form that (4) should také when n = k + 1. Thus, 
if formula (4) holds for a given integer, then it also holds for the suc- 
“ceeding integer. It is not possible, however, to find a value of n for which 
the formula is true. 

There is a variant of the induction principle that is often used 
when Theorem 1-2 by itself seems ineffective. As with the first version, 
this Second Principle of Finite Induction gives two conditions which 
guarantee that a certain set of positive integers actually consists of all 
positive integers. What happens is this: we retain requirement (i), but 
(ii) is replaced by 


(1) Ifk is a positive integer such tbat1,2,. . .,k belong to S, then 
, k + 1 must also be in S. 


The proof that 5 consists of all positive integers has the same. 


flavor as that of Theorem 1-2. Again, let Т represent the set of positive 
integers not in 5. Assuming that T is nonempty, we pick п to be the 
smallest integer in 7; Then 7 > 1, by supposition (i). The minimal nature 
of n allows us to conclude that none of the integers 1,2,...,2—1 
lies in T, or, ifone prefers a positive assertion, 1,2,. . .,— 1all belong 
to 5. Property (ii) then puts n = (n — 1) + Lin S, which is an obvious 
contradiction. The result of all this is to make T empty. 

The First Principle of Finite Induction is used more often than 
the Second, but there are occasions when the Second is favored and the 
reader should be familiar with both versions: (It sometimes happens that 
in attempting to show that k + 1 is a member of S, one requires the fact 
that not only & but all positive integers which precede ё, lie in $.) Our 


SECTION 1.1 ‘Mathematical Induction 7 


formulation of these induction principles has been for the case in which 
the induction begins with 1. Each form can be generalized to start with 
any positive integer 7. In this circumstance, the conclusion reads, "Then 
S is the set of all positive integers 72 т.” 

Mathematical induction is often used as a method of definition 
as well asa method of proof. For example, a common way of introducing 
the symbol n! (pronounced “n factorial") is by means of the inductive 


definition 


(a) T= 1; 
(b) n= n. (п- 1)! forn>1. 


This pair of conditions provides a rule whereby the meaning of n! is 
specified for each positive integer и. Thus, by (а), = 1; (a) and (b) 
yield 

21=2.1=2.1; 


while by (b) again, 
31—3.21!23-.2-1. 


Continuing in this manner, using condition (b) repeatedly, the numbers 
1,21 3!,. . ., n! are defined in succession up to any chosen n. In fact, 


n-2n.(n—1).-53-2-.1. 
Induction enters in showing that m!, as a function on the positive inte- 


gers, exists and is unique; we shall make no attempt however to give the 


argument. 
It will be convenient to extend the definition of n! to the case 


in which n — 0 by stipulating that 0! — 1. 


Example 1-1 
To illustrate a proof which requires the Second Principle of Finite 
Induction, consider the so-called Lucas sequence 


1,3, 4, 7, 11, 18, 29, 47, 76, . . . 


Except for the first two terms, each term of this sequence is the sum 
of the preceding two, so that the sequence may be defined induc- 
tively by 

15 

а = 3, 
асаа bu. for all n = 3. 


8 Some Preliminary Considerations CHAPTER 1 


We contend that the inequality i 
а, < (7/4)" 


holds for every positive integer n. The argument used is interesting 
because in the inductive Step, it is necessary to know the truth of 
this inequality for two successive values of n in order to establish 
its truth for the following value. 

First of all, for п = 1 and 2, we have 


a = 1 < (7/4)! = 7/4 and а, = 3 < (7/4? = 49/16, 


whence the inéquality in question holds in these two cases. This 
provides a basis for the induction. For the induction step, pick an 
integer k > 3 and assume that the inequality is valid for » = 1, 2, 
...,@- 1. Then, іп particular, 


Ч, -, < (7/4)*~ and a, . , < (7/4)*-2, 
„Ву the way in which the Lucas sequence is formed, it follows that 
а= Ar- + a, - , < (7/4)*-1+ (7/4). -? YA 
= (7/4) 7 2(7/4 + 1) 
= (7/4)4~ (11/4) 
< (/4)* - 2(7/4)2 = (7/4)*. 
Since the inequality is true for n = k whenever it is true for the 


integers 1, 2,. . ., k — 1, we conclude by the second induction 
principle that a, < (7/4)" for all n = 1. 


Among other things, this example suggests that if objects are de- 
fined inductively, then mathematical induction is an important tool for 
establishing the properties of these objects. 


PROBLEMS 1.1 


1. Establish the formulas below by mathematical induction: 
@ 1293... - eu О оған 
(D 1:4 t5. Ои т) for all = 1; 
2 ND C Cg ue а 
n(n + 1)(n + 2) х 
3 


for all n = 1; 


SECTION 1.1 Mathematical Induction 9 


(d) Peso Qao 1 = "О 


for all n= 1; 


2 
(e) BEZES: + m = [ret] for all nz 1. 


2. If r 1, show that 
nti 
atartart-:-- + arr = ED 
for any positive integer n. 
3. Use the Second Principle of Finite Induction to establish that 
а= 1 = (а 1) (а + ат tar +... tat) 
for all = 1. 
(Hint: ant! — 1 = (a + 1)(a"— 1) — аба"! — 0] 
} Prove that the cube of any integer сап be written as the difference 
of two squares. [Hint: Notice that 
mP-( T -2T.o + т) (PH+. +n- 1))] 
5. (a) Find the values of п <7 for which n! + 1 is a perfect square 
(it is unknown whether n! + 1 is a square for any и > 7). 
(b) True or false? For positive integers m and n, (mn)! = min! 
and (m+ n)! = m! + n. 
6. Prove that n! > nè? for every integer n 2 4, while n! > n? for every 
integer n > 6. 
7. Use mathematical induction to derive the formula 


10 + 2020) + 3) +... + n(n) = t1! 1 
for all я 2 1. 


> 


8. (a) Verify that 
2.6.10.14... + Gn - 2 = GP 
for all n 2 1. 
(b) Use part (a) to obtain the inequality 2"(n!)? < (2n)! for all 
9. и. Bernoulli inequality: if 1 + a > 0, then 


(1+ а)" 2 1 + na 


for all я > 1. 


10 Some Preliminary Considerations CHAPTER 1 


10. Prove by mathematical induction that 


(Usb oer 1 1 
ПЕ на 
itg 3 nm n 


for all ә 2 1. 


1.2 THE BINOMIAL THEOREM 


Closely connected with the factorial notation are the binomial coeffi- 
cients a) For any positive integer п and any integer & satisfying 


0 S # = n, these are defined by 


(1)- n 
k k(n — br 


n 


k ) can be written as 


By cancelling out either k! ог (n = k)!, ( 
(23 n(n—1)--(kt1) n(n—1)»..(n— 41) 
MUI mre А dA 
k E. k! 
For example, with n — 8 апа & — 3, we have 


(S) 4 82226124, 8728 
3/ 315! 5! 3! 


Observe too that if k = 0 or k =n, the quantity 0! appears onthe right- 


= 56. 


hand side of the definition of л ; Since we have taken 0! as 1, these 


n n 
( 0 ) ( n ) $ 
There are numerous useful identities connecting binomial coefficients. 
One that we require here is Pascal’s rule: à 


и Ы 1<k<n. 


Special values of & give 


SECTION 1.2 The Binomial Theorem 11 


Its proof consists of multiplying the identity 


ВЕ ПЕ 
Eu ume BRL RO а 0) 


by DEM in order to obtain 
n! "e n! 
k(k—1)(n—E!* (k—1)(n— kt DG — k)! 
ith (n+ 1)n! 
ВЕ In = + 1) (п - 0)! 


Falling back оп the definition of the factorial function, this says that 


n! A n! AY (n t 1)! 
klin- kb)! (k—1)(n-k+1)! &nt1-— k)!’ 
from which Pascal's rule follows. 


This relation gives rise to a configuration, known as Pascal's tri- 


angle, in which the binomial coefficient ( 4 ) appears as the (# + 1)th 


number in the zth row: 


ТТ 70207 2:15:60 d 


The rule of formation should be clear. The borders of the triangle are 
composed of 1's; a number not on the border is the sum of the two num- 
bers nearest it in the row above. 

The so-called binomial theorem is in reality a formula for the 
complete expansion of (a + b)", n = 1, into a sum of powers of a and 
b. This expression appears with great frequency in all phases of number 
theory and it is well worth our time to look at it now. By direct multi- 
plication, it is easy to verify that 


(a+ b) a+ b, 

(a+ b? = € + 2abt P, 

(a+ b = 2 + 3@b+ Заб + b, 

(a+ b) = а + 4@b + 62b + 4ab + М, ес. 


12 Some Preliminary Considerations CHAPTER 1 


The question is how to predict the coefficients, A clue lies in the obser- 
vation that the coefficients of these first few expansions comprise the 
Successive rows of Pascal’s triangle. This would lead one to Suspect that 
the general binomial expansion will take the form 


(a+ or-(2)e * (2)e- s (2)e-w 


or, written more compactly, 
SEA "im 
(a+ b) 2 (7) p. 


Mathematical induction provides the best means for confirming 
this guess. When я = 1, the conjectured formula reduces to 


(ask y= 5 (Бет (3 Jaw (0) еы аз b, 


which is certainly correct. Assuming that the formula holds for some fixed 
integer m, we go on to show that it must hold for m + 1 too. The starting 
point is to notice that 


(a+ B)"*'— a(a- b)™+ Wat b)". 
Under the induction hypothesis, 
= y т - = д" > m = 
a(a + b) > (7), + ets D (3) thh 
and 


bator- У (т) 


1—0 


= » (pm art eet one 


k*1 


Upon adding these expressions, we obtain 


(a+ bm +1 = gni > ЕЈР Е pt: 


а= 1 
т+1 
= ("i etim, X 
а= 0 k 


ашаа 


SECTION 1.2 The Binomial Theorem 13 


which is the formula in the case n = т + 1. This establishes the bi- 
nomial theorem by induction. 

Before abandoning these ideas, we might remark that the first 
acceptable formulation of the method of mathematical induction ap- 
pears in the treatise Traité du Triangle Aritbmetiqué, by the 17th cen- 
tury French mathematician and philosopher Blaise Pascal. This short 
work was written in 1653, but not printed until 1665, because Pascal had 
withdrawn from mathematics (at the age of 25) to dedicate his talents 
to religion. His careful analysis of the properties of the binomial coef- 
ficients helped lay the foundations of probability theory. 


Problems 1.2 

1. Prove that Юг n = 1: 
(a) (27) = 183—909 y 
ов) 


2. #2 = k< n 2, show that 

п 7d n—1 nice 2 

(a) (pag) Foi) a k ) Ri 
3. For n= 1, derive each of the identities below: 


e (т) (т) (т) о 


[Hint: Let a = = 1 in the binomial theorem.] 
ва п TORON ВИД 
o A 


(c) СЕНЕН onn (2) mmm 


[Hint: After expanding n(1 +4)”-' by the binomial theorem, 
let b = 1; note also that 


(71!) ожо (т) 
ОРАМ 
(e) (*)+(=)+ (=) +(2) +... 
Е ЕА 


[Hint: Use parts (a) and (Ъ).] 


14 Some Preliminary Considerations CHAPTER 1 


o (2)-20)*$0)-SRE)- 
1 


ntl 
(Hint: the left-hand side equals 


CEDAT 


LI spe ЈЕ 3] ] 


4. Prove that for n z 1! 


(a) (yet K 1) fand oniyifo = r< 2 (s = y, 


n n 
(b) (7)>(_2,) ttand ont - 1 rm n - n. 


сс) (оа and only if » is ап odd integer, 
r Tk 


and r= > (n= 1). 


Qnm! . m 


5. Forn = 1, show thatthe expressions ————_ "iG En and r 


integers. 
6. (a) For n = 2, prove that 


2 3 4 ni. 7л) 
(aJl) (2) rary: 
(Hint: Use induction and Pascal's rule.] 
(b) From part (a) and the fact tu (7) + (71) oe for 


2 
т = 2, deduce the formula 


PETER те "РОО. 


7. For n> 1, verify that 


PESRAES.. t Qn- ip (#1). 
8. Establish the inequality 2" < (2) < 2?" for n 2 1. 


[Hint:Put x 2.4.6... .. (Ол), ў -3. 5... cu 
(2n —1527—1-2:3.X e J. n and show that x > у> z, whence 
2 > xy > xz.) 


SECTION 1.3 Early Number Theory 15 


1.3 EARLY NUMBER THEORY 


Before becoming weighted down with detail, we should say a few words 
about the origin of number theory. The theory of numbers is one of the 
oldest branches of mathematics; an enthusiast, by stretching a point here 
and there, could extend its roots back to a surprisingly remote date. While 
it seems probable that the Greeks were largely indebted to the Baby- 
lonians and ancient Egyptians for a core of information about the prop- 
erties of the natural numbers, the first rudiments of an actual theory are 
generally credited to Pythagoras and his disciples. 

Our knowledge of the life of Pythagoras is scanty and little can 
be said with any certainty. According to the best estimates, he was born 
between 580 and 562 в.с. on the Aegean island of Samos. It seems that 
he studied not only in Egypt, but may have even extended his journeys 
as far east as Babylonia. When Pythagoras reappeared after years of wan- 
dering, he sought out a favorable place for a school, and finally settled 
upon Croton, a prosperous Greek settlement on the heel of the Italian 
boot. The school concentrated on four mathemata, or subjects of study: 
arithmetica (arithmetic, in the sense of number theory, rather than the 
art of calculating), harmonia (music), geometría (geometry), and as- 
trologia (astronomy). This fourfold division of knowledge became known 
in the Middle Ages as the quadrivium, to which was added the trivium 
of logic, grammar, and rhetoric. These seven liberal arts came to be 
looked upon as the necessary course of study for an educated person. 

Pythagoras divided those who attended his lectures into two 
groups: the Probationers (or listeners) and the Pythagoreans. After three 
years in the first class, a listener could be initiated into the second class, 
to whom were confided the main discoveries of the school. The Pytha- 
goreans were a closely knit brotherhood, holding all worldly goods in 
common and bound by an oath not to reveal the founder's secrets. Legend 
has it that a talkative Pythagorean was drowned in a ghipwreck as the 
gods’ punishment for publicly boasting that he had added the dodeca- 
hedron to the number of regular solids enumerated by Pythagoras. For 
a time the autocratic Pythagoreans succeeded in dominating the local 
government in Croton, but a popular revolt in 501 B.c. led to the murder 
of many of its prominent members, and Pythagoras himself was killed 
shortly thereafter. Although the political influence of the Pythagoreans 
was thus destroyed, they continued to exist for at least two centuries 
more as a philosophical and mathematical society. To the end, they re- 
mained a secret order, publishing nothing and, with a noble self-denial, 
ascribing all their discoveries to the Master. 


16 Some Preliminary Considerations CHAPTER 1 


The Pythagoreans believed that the key to an explanation of the 
universe lay in number and form, their general thesis being that “Еуегу- 
thing is Number." (By number, they meant of course a positive integer.) 
For a rational understanding of nature, they considered it sufficient to 
analyze the properties of certain numbers. With regard to Pythagoras 
himself, we are told that he "seems to have attached supreme impor- 
tance to the study of arithmetic, which he advanced and took out of the 
realm of commercial utility.” 

The Pythagorean doctrine is a curious mixture of cosmic phi- 
losophy and number-mysticism, a sort of supernumerology which as- 
signed to everything material or spiritual a definite integer. Among their 
writings, we find that 1 represented reason, for reason could produce 
only one consistent body of truths; 2 stood for man and 3 for woman; 4 
was the Pythagorean symbol for justice, being the first number which is 
the product of equals; 5 was identified with marriage, since it is formed 
by the union of 2 and 3; and so forth. All the even numbers, after the first 
one, were capable of separation into other numbers; hence, they were 
prolific and were considered as feminine and earthy—and somewhat less 
highly regarded in general. Being a predominantly male society, the Py- 
thagoreans classified the odd numbers, after the first two, as masculine 
and divine. 1 

Although these speculations about numbers as models of | 
"things" appear frivolous today, it must be borne in mind that the in- 
tellectuals of the classical Greek period were largely absorbed in phi- 
losophy and that these same men, because they had such intellectual 
interests, were the very ones who were engaged in laying the founda- ~ 
tions for mathematics as a system of thought. To Pythagoras and his fol- _ | 
lowers, mathematics was largely а means to an end, the end being | 
philosophy. Only with the foundation of the School of Alexandria do we 7 
enter а new phase in which the cultivation of mathematics is pursued 
for its own sakę 

We might digress here to point out that mystical speculation - 
about the properties of numbers was not unique to the Pythagoreans. - 
One of the most absurd yet widely spread forms which numerology took | 
during the Middle Ages was a pseudo-science known as gematria or ar- | 
itbmology. By assigning numerical values to ће letters of the alphabet | 

2 
| 


in some order, each name or word was given its own individual number. 4 
From the standpoint of gematria, two words were considered equivalent | 
if the numbers represented by their letters when added together gave — 
the same sum. All this probably originated with the early Greeks where d 


t 
| 
1 
| 


| 
| 


SECTION 1.3 Early Number Theory 17 


the natural ordering of the alphabet provided a perfect way of recording 
numbers; а standing for 1, 6 for 2, and so forth. For example, the word 
"amen" is арду in Greek; these letters have the values 1, 40, 8, and 50, 
respectively, which total 99. In many old editions of the Bible, the number 
99 appears at the end of a prayer as a substitute for amen. The most famous 
number was 666, the “number of the beast," mentioned in the Book of 
Revelations. A favorite pastime among certain Catholic theologians 
during the Reformation was devising alphabet schemes in which 666 
was shown to stand for the name of Martin Luther, thereby supporting 
their contention that he was the Antichrist. Luther replied in kind: he 
connected a system in which 666 became the number assigned to the 
reigning Pope, Leo X. 

It was at Alexandria, not Athens, that a science of numbers di- 
vorced from mystic-philosophy first began to develop. For nearly a thou- 
sand years, until its destruction by the Arabs in 641 a.D., Alexandria stood 
at the cultural and commercial center of the Hellenistic world. (After 
the fall of Alexandria, most of its scholars migrated to Constantinople. 
During the next 800 years, while formal learning in the West all but dis- 
appeared, this enclave at Constantinople preserved for us the mathe- 
matical works of the various Greek Schools.) The so-called Alexandrian 
Museum, a forerunner of the modern university, brought together the 
leading poets and scholars of the day; adjacent to it there was estab- 
lished an enormous library, reputed to hold over 700,000 volumes— 
hand-copied—at its height. Of all the distinguished names connected 
with the Museum, that of Euclid (circa 350 в.с.), founder of the School 
of Mathematics, is in a special class. Posterity has come to know him as 
the author of the Elements, the oldest Greek treatise on mathematics to 
reach us in its entirety. The Elements is a compilation of much of the 
mathematical knowledge available at that time, organized into thirteen 
parts or Books, as they are called. The name of Euclid is so often asso- 
ciated with geometry that one tends to forget that three of the Books, 
VII, VIII, and IX, are devoted to number theory. 

Euclid's Elements constitute one of the great success stories of 
world literature. Scarcely any other book save the Bible has been more 
widely circulared or studied. Over a thousand editions of it have ap- 
peared since the first printed version in 1482, and before that manuscript 
copies dominated much of the teaching of mathematics in Western 
Europe. Unfortunately no copy of the work has been found that actually 
dates from Euclid's own time; the modern editions are descendants of 
a revision prepared by Theon of Alexandria, a commentator of the fourth 
century A.D. 


18 


PROBLEMS 1.3 


1. 


м 


- Prove that the square of any odd multiple of 3 is the difference of 


- In the sequence of triangular numbers, find 


Some Preliminary Considerations CHAPTER1 - 


Each of the numbers 
1=1,3=142,6=1+2+3,10=1+24+3'+4,... 


fepresents the number of dots that can be arranged evenly in an 
equilateral triangle: 


. ee .. 6 
wo Peres eRe a eres Е, 
This led the ancient Greeks to call a number triangular if it is the 
sum of consecutive integers, beginning with 1. Prove the following 
facts concerning triangular numbers: 
(a) A number is triangular if and only if it is of the form 
n(n + 1)/2 for some n = 1. (Pythagoras, circa 550 в.с.) ) 
(b) The integer is a triangular number if and only if 87 + 1 is 
a perfect square. (Plutarch, circa 100 A.D.) 
(c) The sum ôf any two consecutive triangular numbers is a per- 
fect square. (Nicomachus, circa 100 A.D.) 
(d) If isa triangular number, then so are 9n + 1,255 + 3, and 
49n + 6. (Euler, 1775). 
If t, denotes the mth triangular number, prove that in terms of the. 
binomial coefficients 


gena n=l, 


Derive the following formula for the sum of triangular numbers, 
attributed to the Hindu mathematician Aryabhatta (circa 5004.5): | 


ажаа ко OTDD = 


[Hint: Group the terms on the left-hand side in pairs, noting the - 
identity 4,-, += ke.) 
two triangular numbers; specifically, that $ 

К es е 


(а) two triangular numbers whose sum and difference are also 3 
trianonlar e mharc. 


SECTION 1.3 Early Number Theory 19 


(b) three successive triangular numbers whose product is a per- 
fect square; 
(c) three successive triangular numbers whose sum is a perfect 
square. 
(a) If the triangular number /, is a perfect square, prove that 
linn» iS also a square. 
(b) Use part (a) to find three examples of squares which are also 
triangular numbers. 
Show that the difference between the squares of two consecutive 
triangular numbers is always a cube. 
Prove that the sum of the reciprocals of the first n triangular num- 
bers is less than 2; that is, 


1/1 + 1/3 + 1/6 + 1/10 + ... t Yt, < 2. 


" 2 : і 
[Hint: Observe that HUI 2 n n+ ) 7 


(a) Establish the identity t = ¢, + 4, where 
“x= 1/2 n(n + 3) +1,у= п +1, 2 = 1/2 n(n + 3), 


and и 2 1, thereby proving that there are infinitely many tri- 
angular numbers which are the sum of two other such num- 
bers. 

(b) Find three examples of triangular numbers which are sums 
of two other triangular numbers. 


Fey ese supè abo: tari 
ji 


Divisibility Theory 
in the 
Integers 


“Integral numbers 


are the 
fountainbead of all 
mathematics.” 


H. MINKOWSKI 


VERI 9 
зити mL 


2.1 THE DIVISION ALGORITHM 


We have been exposed to the integers for several pages and as yet nota 
single divisibility property has been derived. It is time to remedy this — 
situation. One theorem acts as the foundation stone upon which our 
whole development rests: the Division Algorithm. The result is familiar 
to most of us; roughly, it asserts that an integer a can be “divided” bya _ 
positive integer bin sucha way that the remainder is smaller in size than 
b. The exact statement of this fact is 


THEOREM 2-1 (Division Algorithm). Given integers a and b, with 
b> 0, there exist unique integers 4 and r satisfying 
a=qb+r, O=r<b. 
The integers 4 and г are called, respectively, the quotient and re- 
mainder in the division of a by b. 
Proof: We begin by proving that the set 
5 = [a — xb| xan integer; а — xb = 0] 


is nonempty. For this, it suffices to exhibit a value of x making 
а — xb nonnegative. Since the integer b 2 1, we have|a| b= 
| aland so 


4—(—lal)b- a-lalbz a-lalz 0. 


Hence, for the choice x = —| al, a — xb will lie in S. This paves 
the way for an application of the Well-Ordering Principle, from 
which we infer that the set $ Contains a smallest integer; call it r. 
By the definition of S, there exists an integer 4 satisfying 


r= a— qb, O<r. 
We argue that r < b. If this were not the case, then r = band 
a— (q+1)b=(a~qb)~b=r—bz0, 


SECTION 2.1 The Division Algorithm Е 23 


The implication is that the inter a — (q + 1)bhas the proper form 
to belong to the set 5. But a — (q + 1)b = r — b< r, leading to 
а contradiction of the choice of г as the smallest member of 5. 
Hence, r< b. 

We next turn to the task of showing the uniqueness of q 
and r. Suppose that a has two representations of the desired form; 
say 


a-qbtr-7dqbtr, 
where 0 = г< b,0 =” < b. Then r' — r= b(q— q') and, owing 
to the fact that the absolute value ofa product is equal to the product 
of the absolute values, 

Ir — ri 7 biq 41. 


Upon adding the two inequalities ~b < =r = 0 and 0 = r' 
< b, we obtain —b < r' — r < b or, in equivalent terms, 
|r’ — r| < b. Thus, blq — а'| < b, which yields 


0=14-41<1. 
Since| q — 4' lis a nonnegative integer, the only possibility is that 
Iq — q'|= 0, whence q = q’; this in its turn gives r = г’, ending 
the proof. 
A more general version of the Division Algorithm is obtained on 


eplacing the restriction that b be positive by the simple requirement 
hat b # 0. 


COROLLARY. Jf a and b are integers, with b # 0, then there exist 
unique integers q and r sucb tbat 
а= qb + г, 0= < 10. 


Proof: It is enough to consider the case іп which bis negative. Then 
| b| > 0 and the theorem produces unique integers 4' and r for 
which 


a= аы, > osr<lbl. 


Noting that | bl = — b, we may take q = —4' to arrive at a = 
qb+r,with0 = г<|Ь|. 


24 Divisibility Theory in the Integers CHAPTER2 | 


To illustrate the Division Algorithm when b < 0, let us take 
b= —7. Then, for the choices of a = 1, —2, 61, and —59, one gets the 
expressions 


a ОСУ) 

Te we МЕЛ) 35. 
61 = (—8)(—7) + 5, 

"onum DC Tho: 


y 


We wish to focus attention, not so much on the Division Algo- 
rithm, as on its applications, As a first example, note that with b = 2 the 
possible remainders аге r = 0 and r = 1. When r = 0, the integer ahas ` 
the form a = 2q and is called eren; when r — 1, the integer a has the 
from a = 24 + Тапа is called odd. Now @ is either of the form (24)? 
= 4k or (24 + 1)? = 4(¢ + q) + 1 = ák + 1. The point to be made 
is that the square of an integer leaves the remainder 0 or 1 upon division 
by 4. 

We can also show the following: The square of any odd integer 
is of the form 8 + 1. For, by the Division Algorithm, any integer is rep- 
resentable as one of the four forms 44, 44 + 1,44 + 2, áq + 3. In this 
classification, only those integers of the forms 4q + 1 and 4q + 3 are 
odd. When the latter are squared, we find that 


(44 + 1? = 8024 + Я +1=8k+1 
and similarly 
(44 + 3)? = 8(24? + За + 1)+1=8k+1. 


As examples, the square of the odd integer 7 15 72 = 49 = 8.6 + 1, 
while the square of 13 is 13? = 169 = 8 . 21 + 1. 

As these remarks indicate, the advantage of the Division Algo- 
rithm is that it allows us to Prove assertions about all the integers by 
considering only a finite number of cases. Let us illustrate this with one 
final example. y 


Example 2-1 
We propose to show that the expression 


aa + 2) 
3 


is an integer for 


all a = 1. According to the Division Algorithm, every a is of the 
form 34, 3q + 1, or 3q + 2. Assume the first of these cases. Then 


а(а? + 2)/3 = q(9g? + 1), 


SECTION 2.1 ime wivision Algorithm 25 


which clearly is an integer. Similarly, if a = 34 + 1, then 
(34 + 1)(Gq + 1)? + 2)/5 = (34 + DGP + 24+ 1), 


and a(@ + 2)/3 is an integer in this instance also. Finally, for 
а = 3q + 2, we get 


(34 + 2)((39 + 2)? + 2)/3 = (34 + 2)(34 + 44 + 2), 


an integer once more. Consequently, our result is established in all 
cases. 


PROBLEMS 2.1 


1. Prove that if a and bare integers, with b> 0, then there exist unique 
integers q and r satisfying а = qb + r, where 2b = r < 3b. 
2. Show that any integer of the form 6% + 5 is also of the form 
3k + 2, but not conversely. 
3. Use the Division Algorithm to establish that 
(a) the square of any integer is either of the from 3k or 3k + 1; 
(b) the cube of any integer has one of the forms 9k, 9k + 1 or 
9k + 8; 
(c) the fourth power of any integer is either of the form 5% or 
5ka ^ 
4. Prove that 32^ — 1 is never a perfect square. [Hint: Problem 3(2).] 
5. For n 1, prove that n(n + 1)(2n + 1)/6 is an integer. [Hint: By . 
the Division Algorithm, я has опе of the forms 6b, 6k + 1,. . ., 
6k + 5; establish the result in each of these six cases.] 
5. Verify that if an integer is simultaneously a square and a cube (as 
ic the case with 64 = 8? = 43), then it must be either of the form 
7kor 7k + 1. 
Obtain the following version of the Division Algorithm: For inte- 
gers a and b, with b # 0, there exist unique integers q and r sat- 


7 


isfying а = qb + r, where — Ibl « rs 5161. [Hint: First write 
a= q'b + r,where 0 = г <| bl. When 0 = r <td, let 


г = r and а = q';whenslbl<r’ <| bl, let r = r' — | bland 
q=qt1lifb>0og=q'—1ifb<0] 


| 


26 Divisibility Theory in the Integers CHAPTER 2 


8. Prove that no integer in the sequence 
15 BOY, 1111/11113, EA 


is a perfect square. (Hint: A typical term 111 --- 111 can be written 
as 111... 111 = 111... 108 + 3 = ák + 3] 
9. Show that the cube of any integer is of the form 7& or 7k + 1. 
10. For n = 1, establish that the integer n(7n? + 5) is of the form 6k 
11. If nis an odd integer, show that n + án + 11 is of the form 16k. 


2.2 THE GREATEST COMMON DIVISOR 


Of special significance is the case in which the remainder in the Division 
Algorithm turns out to be zero. Let us look into this situation now. 


DEFINITION 2-1. An integer b is said to be divisible by an integer 
а * 0, in symbols a| b, if there exists Some integer c such that 
‘b= ac. We write а} bto indicate that b is not divisible by а. 


Thus, for example, —12 is divisible by 4, since —12 = 4(—3). 
However, 10 is not divisible by 3; for there is no integer c which makes 
the statement 10 = 3c true, 

There is other language for expressing the divisibility relation 
4| b. One could Say that a is a divisor of b, that a is a factor of b or that 
bis a multiple of a. Notice that, in Definition 2-1, there is a restriction 
оп the divisor a: whenever the notation a| 6 is employed, it is under 
stood that a is different ftom zero. 

If a is a divisor of b, then b is also divisible by — a (indeed, 
b = ac implies that b = (—a)(—c)), so that the divisors of an integer 
always occur in pairs. In order to find all the divisors of a given integer, 
it is sufficient to obtain the Positive divisors and then adjoin to them the 
corresponding negative integers. For this reason, we shall usually limit 
ourselves to a consideration Of positive divisors. 

It will be helpful to list some of the more immediate conse- 
quences of Definition 2-1 (the reader is again reminded that, although 
Not stated, divisors are assumed to be nonzero), 


THEOREM 2-2. For integers a, b, c, the following bold: 
(1) alo, 112, ala. 


(2) 411 if and only ifa = +1. 
(3) If a| b and c| d, then ac| bd. 


SECTION 2.2 The Greatest Common Divisor < 27 


(4) Ifa| band blc, then alc. 

(5) alb and bla if and only ifa = +b. 

(6) Ifalb and b + 0,thenlal Ibl. 

(7) Ifa\ b and a| c, then a| (bx + cy) for arbitrary integers x 
and y. 


Proof: We shall prove assertions (6) and (7), leaving the other parts 
as an exercise. If a | b, then there exists an integer с such that 
b= ac;also, b # 0 implies that с # 0. Upon taking absolute values, 
we рег bl = l acl = 1211 cl. Since c # 0, it follows that | c| 2 1, 
whencel bl = l all cl zl al. 

As regards (7), the relations a | b and а | c ensure that 
b = arand c = as for suitable integers rand s. But then 


bx + cy = arx + asy = a(rx + sy) 


whatever the choice of xand у. Since rx + syis an integer, this says 
that a| (bx + cy), as desired. 


It is worth pointing out that property (7) of the preceding 
theorem extends by induction to sums of more than two terms. That is, 
ifalb,fork = 1,2,. . ., n, then 


а| (bixi + Вх, + +++ + bx) 


for all integers x, х,,. . ., Xm The few details needed for the proof are 
so straightforward that we omit them. 

If a and bare arbitrary integers, then an integer d is said to be 
a common divisor of a and b if both d| a and d| b. Since 1 is a divisor 
of every integer, 1 is a common divisor of a and b; hence, their set of 
positive common divisors is nonempty. Now every integer divides 0, so 
that if a = b — 0, then every integer serves as a common divisor of a 
and b. In this instance, the set of positive common divisors of a and b is 
infinite. However, when at least one of a or bis different from zero, there 
are only а finite number of positive common divisors. Among these, there 
is a largest one, called the greatest common divisor of a and b. Framed 
as a definition, 


DEFINITION 2-2. Let a and b be given integers, with at least one of 
them different from zero. The greatest common divisor of a and b, 
denoted by gcd(a , b), is the positive integer d satisfying 


(1) dlaand dib, 
(2) if claand c| b, then c = d. 


28 Divisibility Theory in the Integers CHAPTER 2 


Example 2-2 
The positive divisors of —12 are 1, 2, 3, 4, 6, 12, while those of 30 
are 1, 2, 3, 5, 6, 10, 15, 30; hence, the positive common divisors of 
7-12 and 30 are 1, 2, 3, 6. Since 6 is the largest of these integers, it 
follows that gcd(—12, 30) = 6. In the same way, one can show that 


8cd(—5,5) = 5, gcd(8,17) — 1, and gcd(—8 , —36) = 4. 


The next theorem indicates that gcd(a , b) can be represented 
as a linear combination of a and b (by a linear combination of a and b, 
we mean an expression of the form ax + by, where xand yare integers). 
This is illustrated by, say. 


gcd(—12 , 30) = 6 = (—12)2 + 30 . 1 
or 
gcd(—8 , — 36) = 4 = (—8)4 + (—36)(-1). 
Now for the theorem: 
THEOREM 2-3. Given integers a and b, not both of which are zero, 
there exist integers x and y such that 


gcd(a, b) = ax + by. 


Proof: Consider the set S of all positive linear combinations of a 
and 6: 


5 = [ви + bvl аи + bv 0; u, v integers]. 


Notice first that 5 is not empty. For example, if а # 0, then the 
integerl al = au + b- 0 will lie in 5, where we choose u = 1 or 
и = —1 according as a is positive or negative. By virtue of the 
Well-Ordering Principle, S must contain asmallest element d. Thus, 
from the very definition of 5, there exist integers xand y for which 
d= ax + by. We claim that d = gcd(a, b). 

Taking stock of the Division Algorithm, one can obtain in- 


tegers дапа rsuch that a = qd + r, where 0 = r < d. Then rcan 
be written in the form 


r—4-— qd a — q(ax + by) 
= all — gx) + b(—qy). 


OTT 


ee eee 


SECTION 2.2 The Greatest Common Divisor 29 


Were r > 0, this representation would-imply that ris a member of 
5, contradicting the fact that d is the least integer in s (recall that 
r < d). Therefore, г = 0 and so а = qd, or equivalently, d| а. By 
similar reasoning d| b, the effect of which is to make da common 
divisor of both a and b. 

Now if c is an arbitrary positive common divisor of the in- 
tegers a and 5, then part (7) of Theorem 2-2 allows us to conclude 
that c| (ах + by); in other words, c| d. By (6) of the same theorem, 
с= |cl X|dl = d, so that d is greater than every positive common 
divisor of a and b. Piecing the bits of information together, we see 
that d = gcd(a, b). 

It should be noted that the foregoing argument is merely an “ех: 
istence" proof and does not provide a practical method for finding the 
values of x and y; this will come later. 

A perusal of the proof of Theorem 2-3 reveals that the greatest 
common divisor of а and b may be described as the smallest positive 
integer of the form ax + by Consider the case in which a = 6 and 
b = 15. Here, the set 5 becomes 

S= [6(—2) +15.1,6(-1) +15. 1,6.1 +15 .0, ... | 
= (3,9,6, -= |. 
We observe that 3 is the smallest integer іп 5, whence 3 = gcd(6 , 15). 

The nature of the members of 5 appearing in this illustration 
suggests another result: 


COROLLARY. Jf a and b are given integers, not both zero, then the 
set 

T= [ах + byl x, y are integers} 
is precisely the set of all multiples of d = gcd(a , b). 
Proof: Since d | a and d | b, we know that d | (ax + by) for all 
integers x,y. Thus, every member of 7 is a multiple of d. On the 


other hand, d may be written as d = ах + by, for suitable integers 
x, and y, so that any multiple nd of d is of the form 


па = n(ax + by) = а(пх)  b(ny). 


` Hence, nd is a linear combination of а and b, and, by definition, 
lies in 7 


30 Divisibility Theory in the Integers CHAPTER 2 


It may happen that 1 and — 1 are the only common divisors of a 
given pair of integers a and b, whence gcd(a , b) = 1. For example: 


gcd(2 , 5) = gcd(—9,16) = 8с4(—27, —35) = 1. 


This situation occurs often enough to prompt a definition. 


DEFINITION 2-3. Two integers a and b, not both of which are zero, 
are said to be relatively prime whenever gcd(a , b) = 1. 


The following theorem characterizes relatively prime integers 
in terms of linear combinations. 


THEOREM 2-4. Lei a and b be integers, not both zero. Then a and 
b are relatively prime if and only if there exist integers x and y 
such tbat1 = ax + by. 


Proof: 1f a and bare relatively prime so that gcd(a, b) = 1, then 
Theorem 2-3 guarantees the existence of integers xand ysatisfying 
1 = ax + by As for the converse, suppose that 1 = ax + by for 
some choice of x and у, and that d = gcd(a , b). Since d| a and 
d| b, Theorem 2-2 yields d| (ax + by), or d| 1. Inasmuch as dis a 
positive integer, this last divisibility condition forces d — 1 (part 
(2) of Theorem 2-2 plays a role here) and the desired conclusion 
follows. 


This result leads to an observation that is useful in certain situ- 
ations; namely, 


COROLLARY 1. If gcd(a, b) = d, then gcd(a/d , b/d) = 1. 


Proof: Before starting with the proof proper, we should observe that 
while a/dand b/d have the appearance of fractions, they are in fact 
integers since d is a divisor both of а and of b. Now, knowing that 
gcd(a , b) = d, it is possible to find integers x and y such that 
d = ax + by Upon dividing each side of this equation by d, one 
obtains the expression 


1= (a/d)x + (ду! 


Because a/d and b/d are integers, an appeal to the theorem is le- 
gitimate. The upshot is that a/d and b/d are relatively prime. 


SECTION 2.2 The Greatest Common Divisor 31 


For an illustration of the last corollary, let us observe that 
gcd(—12, 30) = 6 and 


gcd(—12/6 , 30/6) = gcd(—2,5) = 1, 


as it should be. 

It is not true, without adding an extra condition, that a| c and 
b| c together give abl c. For instance, 6 | 24 and 8| 24, but 6 - 8 / 24. 
Were 6 and 8 relatively prime, of course, this situation would not arise. 
This brings us to 


ConoLLaRY 2. Jf al c and b| c, with gcd(a , b) = 1, then abl c. 


Proof: Inasmuch as al c and bI с, integers rand scan be found such 
that c = ar = bs. Now the relation gcd(a , b) = 1 allows us to 
write 1 = ax + by for some choice of integers x and у. Multiplying 
the last equation by c, it appears that 


с=с. 1 = c(ax + by) = acx t bey. 
If the appropriate substitutions are now made on the right-hand 
side, then 
c = a(bs)x + b(ar)y = ab(sx + ry) 
or, as a divisibility statement, ab] c. 


Our next result seems mild enough, but it is of fundamental im- 
portance. 


THEOREM 2-5 (Euclid's Lemma). fal bc, with gcd(a, b) = 1, then 
alc. 


Proof: We start again from Theorem 2-3, writing 1 = ax + by where 
xand yare integers. Multiplication of this equation by c produces 
c=1-c=(axt by)c = асх + bey. 

Since a| ac and al bc, it follows that al (acx + bcy), which can be 

recast as al с. 


If a and bare not relatively prime, then the conclusion of Eu- 
clid's Lemma may fail to hold. A specific example: 1219 · 8, but 12 / 9 
and 12 / 8. 


32 Divisibility Theory in the Integers CHAPTER 2 


The subsequent theorem often serves as a definition of 
gcd(a , b). The advantage of using it as a definition is that order rela- | 
tionship is not involved; thus it may be used in algebraic systems having 
no order relation, 


THEOREM 2-6. Let a, b be integers, not both zero. For a positive in- 
teger d, d = gcd(a, b) if and only if 


(1) dla and d| b, 
(2) whenever c|a and clib, then c| d. 


Proof: To begin, Suppose that d = gcd(a , b). Certainly, 41 a and 
d| b, so that (1) holds. In light of Theorem 2.3, d is expressible as 
d = ах + by for some integers х, y. Thus, if cl а and c| b, then 
c| (ах + by), or rather c| d. In short, condition (2) holds. Con- 
versely, let d be any positive integer satisfying the stated condi- 
tions. Given any common divisor c of a and b, we have c| d from 
hypothesis (2). The implication is that d = с, and consequently 4 
is the greatest common divisor of a and b. 


Problems 2.2 


1. If al b, show that (~a) | b, al (— 5), and (-a)IC- b). 
2. Given integers a, b, c, d, verify that 

(a) if alb, then al bc; 

(b) if al band al с, then а? | bc; 

(c) albifand only if acl bc, where c + 0; 

(d) if al band с| а then ac] bd. 
3. Prove or disprove: if a| (b + C), then either a| bor al c. 


4. For n= 1, use mathematical induction to establish each of the fol- 
lowing divisibility statements: 


(а) 8152" 4. 7, 

[Hint 5264+) +7 = sa 4 DtQg-—5.:7 
(b) 15] 2%" — 1, ] 
(c) 51 33"+1 + 2"+ 1, 1 


(d) 21 [anti ES SN 
(e) 2412.7" + 3.5" 5 
5. Prove that for any integer а one of the integers а, а + 2, + 4is H 
divisible by 3. [Hint: By the Division Algorithm, the integer a must i 
be of the forms 3, 3k + 1, or 3k + 2] | 


SECTION 2.2 The Greatest Common Divisor 33 


6. 


14. 


15. 


16. 


17 


For an arbitrary integer a, verify that 

(а) 2[а(а + 1), and 3] a(a + 1)(a + 2); 

(b) з[а(22 + 7); 

(c) if ais odd, then 32] (æ? + 3)(а +7). 

Prove that if a and bare both odd integers, then 16| a* + b — 2. 


. Prove that 


(a) thesum ofthe squares of two odd integers cannot be a perfect 
square; 
(b) the product of four consecutive integers is 1 less than a per- 
fect square. 
Establish that the difference of two consecutive cubes is never di- 
visible by 2. 


- For a nonzero integer a, show that gcd(a, 0) = lal, вса(а, а) 


= | а|, and вса(а; 1) = 1. й 
If a and bare integers, not both of which are zero, verify that 


gcd(a, b) = gcd(—a, b) = gcd(a, —b) = gcd(—a , —b), 


- Prove that, for a positive integer » and any integer a, 


gcd(a, а + n) divides n; hence, gcd(a, a 1) = 1. 


- Given integers a and b, prove that 


(a) there exist integers xand yfor which c = ax + by if and only 
if ged(a , b) 1с; 

(b) if there exist integers. x and X for which ax + by = 
gcd(a, b), then gcd(x, y) = 1. 

For any integer a, show that 

(a) gcd(2a +1,9а +4) = 1; 

(b) gcd(5a -2,7a - 3) = 1; 

(c) if ais odd, then gcd(3a , За + 2) = 1. 

If а and 6 are integers, not both of which are zero, prove that 

gcd(2a — 3b, 4a — 5b) divides 6; hence, gcd(2a + 5, 4а + 5) 

нер. 

Given an odd integer a, establish that 


а + (a+ 2)? + (а + 4)? +1 


is divisible by 12. 
Prove that (2)!/n!(n + 1)! is an integer for all n > 0. 


[Hínt: Note that ( i) (2n +1) = ( aa ) (n+ 1).] 


34 Divisibility Theory in the Integers CHAPTER 2 


18. Prove: the product of any three consecutive integers is divisible by 

6; the product of any four consecutive integers is divisible by 24; 

the product of any five consecutive integers is divisible by 120. (Hint: 

See Corollary 2 to Theorem 2-4.) 

Establish each of the assertions below: 

(a) If a is an arbitrary integer, then 6| a( + 11). 

(b) If a is an odd integer, then 24 | a(@ — 1). (Hint: The square 
of an odd integer is of the form 8k + 1) 

(c) If a and bare odd integers, then 8| (a — 62), 

(d) If a is an integer not divisble by 2 or 3, then 24 | (4? + 23). 
[Hint: Any integer а must assume one of the forms 6k, 
6k+1,...,6k+5,] 

(e) If ais an arbitrary integer, then 360 | а(а — 1)(@ — 4). 

20. Confirm the following properties of the greatest common divisor: 
(a) If gcd(a, b) = 1, and gcd(a, с) = 1, then gcd(a , bc) = 1. 

[Hint: Since 1 = ax + by = aut cv for some x, хи v, 
1 = (ax + by) (au + cv) = a(aux + cux + Буи) + bcCyp).] 

(b) If ged(a, b) = 1, and cl а, then gcd(b, с) = 1. 

(с) Ивса(а, b) = 1, then вса(ас, b) = gcd(c , b). 

(d) If gcd(a , b) = 1, and cla + b, then gcd(a , с) = 
8cd(b , с) = 1. (Hint: Let d = gcd(a , c). Then dla, dlc 
implies that dl (a + b) — a, or d| b.) 

(e) If gcd(a, b) = 1, dl ac, and dl bc, then dl c. 


19 


(D Изса(а, b) = 1, then ged(z , b?) = 1. [Hint: First show that. . 


gcd(a, b?) = gcd(a?, b) = 1] 
21. Prove that if d| п, then 2“ — 1 12" — 1. (Hint: Employ the identity 
xh m (АА нә Ар а 1).] 


2.3 THE EUCLIDEAN ALGORITHM 


The greatest common divisor of two integers can, of course, be found 
by listing all their Positive divisors and Picking out the largest one 
common to each; but this is cumbersome for large numbers. A more ef- 
ficient process, involving repeated application of the Division Algo- 
rithm, is given in the seventh Book of the Elements. Although there is 
historical evidence that this method predates Euclid, it is today referred 
to as the Euclidean Algorithm. 


SECTION 2.3 The Euclidean Algorithm 35 


The Euclidean Algorithm may be described as follows: Let a and 
b Бе two integers whose greatest common divisor is desired. Since 
gcd(lal,| bl) = gcd(a , Б), there is no harm in assuming that a = b 
> 0. The first step is to apply the Division Algorithm to a and b to get 


a=qbt+n, Osr <b. 


If it happens that r, = 0, then b| a and gcd(a , b) = b. When r, * 0, 
divide b by r, to produce integers q, and n, satisfying 


р= фп + ғ, OSST, 
If r, = 0, then we stop; otherwise, proceed as before to obtain 
п = ат + ity SBN. 


This division process continues until some zero remainder appears, say 
at the (п + 1)th stage where r,- , is divided by ғ, (a zero remainder 
occurs sooner or later since the decreasing sequence b> n > 7, > +++ 
> 0 cannot contain more than b integers). 

The result is the following system of equations: 


a-dqbtn, <r <b 
b=antn, 0<љ<л 
п = Gh + т 0<љ<һ 
Fg = 2) d.i fu ов 


Tn = 4+1, + 0. 


We argue that r,, the last nonzero remainder which appears in this 
manner, is equal to gcd(a, b). Our proof is based on the lemma below. 


LEMMA. Jf a = qb + r, then gcd(a , b) = gcd(b, r). 


Proof If d = gcd(a , b), then the relations d | a and dl b 
imply that d | (a — qb), or d | r. Thus dis a common divisor of both 
band r. On the other hand, if c is an arbitrary common divisor of 
band r, then c| (gb + 7), whence c| a. This makes c a common 
divisor of a and b, so that c = d. It now follows from the definition 


of gcd(b, r) that d = gcd(b, r). 


36 Divisibility Theory in the Integers СНАРТЕВ2 


Using the result of this lemma, we simply work down the dis- 
played system of equations obtaining 


gcd(a, b) = gcd(b, n) =... = gcd(r, -,, r) = ged(r,,0) = х,, 


as claimed. 

Although Theorem 2-3 asserts that gcd(a , b) can be expressed 
in the form ax + by, the proof of the theorem gives no hint as to how 
10 determine the integers xand y. For this, we fall back on the Euclidean 
Algorithm. Starting with the next-to-last equation arising from the al- 
gorithm, we write 


Tn = Pn T Ann- a 


Now solve the preceding equation in the algorithm for r, .., and substi- 
tute to obtain 
их AS eU ана SA 
= (1 + 4,4-0) т-а + С) з. 
This represents r, as a linear combination of r,- ‚ and ғ, , . Continuing 
backwards through the system of equations, we successively eliminate 


the remainders r, 2, n-o- - -> % r until a stage is reached where 
7, = gcd(a, b) is expressed as a linear combination of a and b. 


Example 2-3 
Let us see how the Euclidean Algorithm works in a concrete case 
by calculating, say, gcd(12378 , 3054). The appropriate applica- 
tions of the Division Algorithm produce the equations 
12378 = 4 - 4054 + 162, 
3054 = 18 - 162 + 138, 
162 = 1. 138 + 24, 
138 =.5 . 24 + 18, 
24 = 1.18 +6, 
18 =3.6+0. 
Our previous discussion tells us that the last nonzero remainder 


appearing above, namely the integer 6, is the greatest common div- 
isor of 12378 and 3054; 


6 = 8cd 12378 3054). 


SECTION 2.3 The Euclidean Algorithm 37 


In order to represent 6 as a linear combination of the integers 12378 
and 3054, we start with the next-to-last of the displayed equations 
and successively eliminate the remainders 18, 24, 138, and 162: 


6 = 24 — 18 
= 24 — (138 — 5 · 24) 
= 6. 24 — 138 


= 6(162 — 138) — 138 

= 6 . 162 —7. 138 

= 6 . 162 — 7(3054 — 18 - 162) 

= 132. 162 — 7 - 3054 

= 132(12378 — 4 - 3054) — 7 - 3054 
= 132 . 12378 + ( — 535)3054. 


Thus, we have 
6 = gcd(12378 , 3054) = 12378x + 3054y, 


where x = 132 and y = —535. It might be well to record that this 
is not the only way to express the integer 6 as a linear combination 
of 12378 and 3054; among other possibilities, one could add and 
subtract 3054 - 12378 to get 


6 = (132 + 3054)12378 + (—535 — 12378)3054 
= 3186 - 12378 + (—12913)3054. 


The French mathematician Lamé (1795-1870) proved that the 
number of steps required in the Euclidean Algorithm is at most five times 
the number of digits in the smaller integer. In Example 2-2, the smaller 
integer (namely 3054) has four digits, so that the total number of divi- 
sions cannot be greater than twenty; in actuality only six divisions were 
needed. Another observation of interest is that for each 7 0, it is pos- 
sible to find integers a, and №, such that exactly n divisions are required 
in order to compute gcd(a,, b,) by the Euclidean Algorithm. We shall 
prove this fact in Chapter 13. 


38 Divisibility Theory in the Integers CHAPTER 2 


One more remark is necessary: The number of steps in the Eu- 
clidean Algorithm can usually be reduced by selecting remainders Neti 
such that | т +11 < 2/2; that is, by working with least absolute remain- 
ders in the divisions. Thus, repeating Example 2-2, it would be more 
efficient to write 

12378 = 4 - 3054 + 162, 
3054 = 19. 162 — 24, 
162 = 7. 24 — 6, 
24 = (—4)(—6) + 0. 
As evidenced by the above set of equations, this scheme is apt to pro- 
duce the negative of the value of the greatest common divisor of two 
integers (the last nonzero remainder being —6), rather than the greatest 
common divisor itself. 

An important consequence of the Euclidean Algorithm is the 

following theorem, 


THEOREM 2-7. If > 0, then gcd(ka , kb) = k gcd(a, b). 
Proof: И each of the equations appearing in the Euclidean Algo- 
rithm for a and № (see page 35) is multiplied by & we obtain 


ak = q(bk) + rik, 0<nk< bk 
bk = q(r,b) + rb, O0<nk< rk 


Tn ~ 28 = Gat, ~ 1k) + rub, 
Ta —1 R= 4, + (т, В) + 0. O<r,k< ryk 


. But this is clearly the Euclidean Algorithm applied to the integers ak 
and bk, so that their greatest common divisor is the last nonzero re- 
mainder r„k; that is, 


&cd(ka, kb) = r,k = kgcd(a, D), 
as stated in the theorem, 


SECTION 2.3 The Euclidean Algorithm 39 


COROLLARY. For any integer k + 0, gcd( ka , kb) = | k| gcd(a , b). 


Proof: If suffices to consider the case in which k < 0. Then 
— = | k| > 0 апа, by Theorem 2-7, 


gcd(ak, bk) = gcd(—ak, — bk) 
= gcd(al kl, bl el) = 11 gcd(a, b). 


An alternate proof of ‘Theorem 2-7 runs very quickly as follows: 
gcd(ak, bk) is the smallest positive integer of the form (ak)x + (bk) y, 
which in its turn is equal to k times the smallest positive integer of the 
form ах + by; the latter value is equal to k gcd(a , b). 

By way of illustrating Theorem 2-7, we see that 


gcd(12 , 30) = 3 gcd(4 , 10) = 3.2gcd(2,5) = 6.1 = 6. 


There is a concept parallel to that of the greatest common div- 
isor of two integers, known as their least common multiple; but we shall 
not have much occasion to make use of it. An integer с is said to be a 
common multiple of two nonzero integers а and b whenever а| c and 
b| c. Evidently, 0 is a common multiple of a and b. To see that common 
multiples which are not trivial do exist, just note that the products ab 
and — (ab) are both common multiples of a and b, and one of these is 
positive. By the Well-Ordering Principle, the set of positive common 
multiples of a and b must contain a smallest integer; we call it the least 
common multiple of a and b. 

For the record, here is the official definition. 


DEFINITION 2-4, The least common multiple of two nonzero inte- 
gers a and b, denoted by Іст(а, b), is the positive integer т sat- 
isfying 


(1) a| mand bl m, 
(2) if a| cand blc, with c > 0, then m = c. 


As an example, the positive common multiples of the integers 
—12 and 30 are 60, 120, 180, . . . ; hence, lem(—12 , 30) = 60. 

The following remark is clear from our discussion: Given non- 
zero integers a and b, 1ст(а , b) always exists and lcm(a , b) =| abl. 


40 Divisibility Theory in the Integers CHAPTER 2 


What we lack is a relationship between the ideas of greatest 
common divisor and least common multiple. This gap is filled by 


THEOREM 2-8. For positive integers a and b, 
gcd(a, b) Іст(а, b) = ab. 


Proof: To begin, put d = gcd(a , b) and write a = dr, b = ds for 
integers rand s. If m= ab/d, then m = as = rb, the effect of which 
is to make m a (positive) common multiple of a and 5. 

Now let cbe any positive integer that isa common multiple 
of a and 6; say for definiteness, c = au = bv. As we know, there 
exist integers x and y satisfying d = ax + by. In consequence, 


e bi е art by) = (х + (c/a)y = vx + uy. 


m 


This equation states that т | c, allowing us to conclude that 
т = c. Thus, in accordance with Definition 2-4, т = Іст(а , b); 
that is, 


ab ab 
Іст(а " b) d gcd(a, by’ 


which is what we started out to prove. 


Theorem 2.8 has a corollary that is worth a separate state- 
ment. 


COROLLARY. Given positive integers a and b, Іст(а, b) = ab if and 
only if gcd(a , b); = 1. 


lem(3054 , 12378) = 3094 12878 = 6300402, * 


SECTION 2.3 The Euclidean Algorithm i 41 


Before moving on to other matters, let us observe that the notion 
of greatest common divisor can be extended to more than two integers _ 
in an obvious way. In the case of three integers, a, b, c, not all zero, 
gcd(a, b, с) is defined to be the positive integer d having the properties 


(1), d is a divisor of each of a, b, с, 
(2) if e divides the integers a, b, с, then e = d. 


To cite two examples, we have 
gcd(39 , 42,54) = 3 and gcd(49 , 210 , 350) = 7. 


The reader is cautioned that it is possible for three integers to be rela- 
tively prime as a triple (in other words, gcd(a, b, c) = 1), yet not rel. 
atively prime in pairs; this is brought out by the integers 6, 10, and 15. 


PROBLEMS 2.5 


» 


Find gcd(145 , 227), gcd(306 , 657) and gcd(272 , 1479). 

Use the Euclidean Algorithm to obtain integers x and y satisfying 

(a) gcd(56 , 72) = 56x + 72y; 

(b) gcd(24 , 138) = 24x + 138y; 

(c) ged(119 , 272) = 119x + 272y; 

(d) gcd(1769 , 2378); = 1769x + 2378y. 

3. Prove that if d is a common divisor of a and b, then d = 
gcd(a , b) if and only if gcd(a/d , b/d) = 1. [Hint: Use Theorem 
2:7] 

4. Assuming that gcd(a, b) = 1, prove the following: 

(а) gcd(a + b, a — b) = 10r2. 
[Hint: Let d = gcd(a + b , a — b) and show that d | 2a, 
d| 2b; thus, that d  gcd(2a , 2b) = 2 gcd(a, b).] 
(b) gcd(2a + b, a+ 2b) = 10r3. 
(с) gcd(a + b, 2 + b?) = 1or2. 
[Hint а? + P = (a + b) (a — b) + 267) 
(d) gcd(a b, — ab+ b?) = 1013. 
[Hint & — ab t b = (a+ b? — 3ab.) 
5. For positive integers а, band n = 1, show that 
(a) If gcd(a, b) = 1, then gcd(a", b?) = 1. [Hint: See Problem 
20(a), Section 2-2.) 
(b), The relation 2" | & implies that a | b. (Hint: Put а = 
/ gcd(a, b) and write a = rd, b = sd, where gcd(r, s) = 1. 
’ Ву part (a), ged(z", 5") = 1. Show that r = 1, whence 


а= т 


№ 


42 Divisibility 1ucury ın tne integers CHAPTER 2 


6. Prove that if gcd(a , b) = 1, then gcd(a + b, ab) — 1. $ 
7. For nonzero integers a and b, verify that the following conditions 
are equivalent: 
(a) alb (b) gcd(a, b) =] al] (c) Іст(а, b) =| b] 
8. Find Icm(143 , 227), Icm(306 , 657) and Icm(272 , 1479). 
9. Prove that the greatest common divisor of two positive integers 
always divides their least common multiple. 
10. Given nonzero integers a and b, establish the following facts con- 
cerning Іст(а, b): 
(a) gcd(a, b) = Іст(а, b) if and only if a = b. 
(b) If k> 0, then lcm(&a , kb) = kicm(a, b). 
(c) If т is any common multiple of а and b, then 
lem(a , b) | m. 
[Hint: Put t = 1ст(а , b) and use the Division Algorithm to 
write m = qt + r, where 0 = r < t. Show that risa common 
multiple of a and 5] 
11. Let a, b, c be integers, no two of which are zero, and d — 
gcd(a, b, c). Show that 
d = gcd(gcd(a , b), с) = gcd(a, gcd(b, с)) 
= gcd(gcd(a, c), b). 
12. Find integers x, y, z satisfying 
gcd(198 , 288 , 512) = 198x + 288y + 5122. 
(Hint: Put а = gcd(198 , 288). Since gcd(198 , 288 , 512) = 
8cd(d , 512), first find integers м and v for which gcd(d, 512) = 
du + 512 1] 


2.4 THE DIOPHANTINE EQUATION ах + by = c 


We now change focus somewhat and take up the study of Diophantine 
equations. The name honors the mathematician Diophantus, who ini- 
tiated the study of such equations. Practically nothing is known of Dio- 
phantus as an individual, save that he lived in Alexandria sometime 
around 250 лр. The only positive evidence as to the date of his activity 
is that the Bishop of Laodicea, who began his episcopate in 270, dedi- 
cated a book on Egyptian computation to his friend Diophantus. While 
Diophantus’ works were written in Greek and he displayed the Greek 
genius for theoretical abstraction, he was most likely a Hellenized Bab- 
ylonian. What personal particulars we have of his career come from the 


SECTION 2.4 The Diophantine Equation ах + by = c 43 


wording of an epigram-problem (apparently dating from the 4th cen- 
tury) to the effect: his boyhood lasted 1/6 of his life; his beard grew after 
1/12 more; after 1/7 more he married, and his son was born 5 years later; 
the son lived to half his father's age and the father died four years after 
his son. If x was the age at which Diophantus died, these data lead to 
the equation 


pte St+oxt4= 
with solution x = 84, Thus he must have reached an age of 84, but in 
what year or even in what century is not certain. 

The great work upon which the reputation of Diophantus rests 
is his Arithmetica, which may be described as the earliest treatise on 
algebra. Only six Books out of the original thirteen have been preserved. 
It is in the Arithmetica that we find the first systematic use of mathe- 
matical notation, although the signs employed are of the nature of ab- 
breviations for words rather than algebraic symbols in our sense. Special 
symbols are introduced to represent frequently occurring concepts, such 
as the unknown quantity in an equation and the different powers of the 
unknown up to the sixth power; Diophantus also had a symbol to ex- 
press subtraction, and another for equality. 

It is customary to apply the term Diophantine equation to any 
equation in one or more unknowns which is to be solved in the integers. 
The simplest type of Diophantine equation that we shall consider is the 
linear Diophantine equation in two unknowns: 


ax + Бу = с, 


where a, b, саге given integers and a, b not both zero. A solution of this 
equation is a pair of integers X», y; which, when substituted into the 
equation, satisfy it; that is, we ask that ax, + by, = c. Curious. y enough, 
the linear equation does not appear in the extant works of Diophantus 
(the theory required for its solution is to be found in Euclid's Elements), 
possibly because he viewed it as trivial; most of his problems dealt with 
finding squares or cubes with certain properties. 

A given linear Diophantine equation can have a number of so- 
lutions, as with 3x + бу = 18, where 


3.4 6-17 18, 
3(—6) + 6 - 6 = 18, 
3-10 + 6(—2) = 18 


44 Divisibility Theory in the Integers CHAPTER 2 


By contrast, there is no solution to the equation 2x + 10y = 17. Indeed, 
the left-hand side is an even integer whatever the choice of xand у while А 
the right-hand side is not. Faced with this, it is reasonable to inquire 
about the circumstances under which a solution is possible and, when 
a solution does exist, whether we can determine all solutions explicitly. 

; The condition for solvability is €asy to state: The Diophantine 
equation ax + by = c admits a solution if and only if 21 c, where 
d = gcd(a , b). We know that there are integers r and s for which 
а = dr and b = ds. If a solution of ax + by = c exists, so that 
ах, + by, = c for suitable x, and у», then 


€ = аҳ + by, = drx + dsy = d(rx, + sy), 


which simply says that d| с. Conversely, assume that d| c, say с = dt. 
Using Theorem 2-3, integers x, and » can be found satisfying d = 
ах + by, When this relation is multiplied by t, we get 


C= = (ax, + by)t = a(tx) + Ы), 
Hence, the Diophantine equation ax + by =¢ has x = tx, and у = гу, 
25 а particular solution. This proves part of our next theorem. 


THEOREM 2-9. Тре linear Diopbantine equation ax + by = c bas 
а solution if and only if d| c, where d = gcd(a, D). If ox, y, is any 
particular solution of this equation, then all otber Solutions are 
given by 


хех tdi y= у (o/dt 
for varying integers t. 


Proof: To establish the second assertion of the theorem, let us sup- 


pose that a solution x, у, of the given equation is known. If x’, у’ 
is any other solution, then 


ах + Бу, = c= ах + by’, 
which is equivalent to 
a(x! — x) = bs — y). 


By the Corollary to Theorem 2-4, there exist relatively prime in- 
tegers rand ssuch that a= dr, b = ds. Substituting these values 


into the last-written equation and cancelling the common factor d, 
we find that 


Их — x) = s — y). 


SECTION 2.4 The Diophantine Equation ах + by=c 45 


The situation is now this: r|.s(y, — y^), with gcd(r, 5) = 1. Using 
Euclid's Lemma, it must be the case that r| (y; — У’); or, in other 
words, у — у’ = rtfor some integer t. Substituting, we obtain 


аА 
This leads us to the formulas 
x =x + st= x + (d), 
y =w t= w (4/01 
It is easy to see that these values satisfy the Diophantine equation, 
regardless of the choice of the integer ¢; for, 
ax’ + Ьу = a|% + (b/d)t] + bly — (a/d)t] 
= (ax + by) + (ab/d — ab/d)t 
-ct0-t-c. 


Thus there are an infinite number of solutions of the given equa- 
tion, one for each value of t. 


Example 2-4 
Consider the linear Diophantine equation 


172x + 20y = 1000. 


Applying Euclid's Algorithm to the evaluation of gcd(172 , 20), we 
find that 
172 = 8 . 20 + 12, 
20=1-12+8, 
12=1.8+4, 
8=2.4, 

whence gcd(172 , 20) = 4. Since 4 | 1000, a solution to this equa- 
tion exists. To obtain the integer 4 as a linear combination of 172 
and 20, we work backwards through the above calculations, as fol- 
lows: 


4=12-8 
= 12 — (20 — 12) 
-2.12—.20 


= 2(172 — 8 - 20) — 20 
= 2 . 172 + (—17)20. 


46 Divisibility Theory in the Integers CHAPTER 2 


Upon multiplying this relation by 250, one arrives at 


1000 = 250 . 4 = 250[2 - 172 + (—17)20] 
= 500 - 172 + (—4250)20, 
so that x = 500 and y = —4250 provides one solution to the Dio- 
phantine equation in question. All other solutions are expressed 
by 
x = 500 + (20/4)t = 500 + 5% 
y —4250 — (172/4)t = —4250 — 43t 
for some integer /. 
A little further effort produces the solutions in the positive 


integers, if any happen to exist. For this, 2 must be chosen so as to 
satisfy simultaneously the inequalities 


: 5t + 500 > 0, —43t — 4250 > 0 


+ ог, what amounts to the same thing, 


36 
—98— > t> —100. 
9 43 t 100 
Since ¢ must be an integer, we are forced to conclude that t = —99. 
Thus our Diophantine equation has a unique positive solution 
x = 5, y = 7 corresponding to the value { = —99. 


It might be helpful to record the form that Theorem 2-9 takes 
when the coefficients are relatively prime integers. 


COROLLARY. /fgcd(a , b) = 1 and if x,, у, is a particular solution 
of the linear Diopbantine equation ax + by = c, then all solutions 
are given by 


e solving of certain 
our next example. 


SECTION 2.4 The Diophantine Equation ах + by = c 47 


Example 2-5 
А customer bought a dozen pieces of fruit, apples and oranges, for 
$1.32. If an apple costs 3 cents more than an orange and more apples 
than oranges were purchased, how many pieces of each kind were 
bought? 

To set up this problem as a Diophantine equation, let x be 
the number of apples and ythe number of oranges purchased; also, 
let z represent the cost (in cents) of an orange. Then the condi- 
tions of the problem lead to 


(z+ 3)x + zy = 132 
or equivalently 
(3x + (x + y)z = 132. 
Since x + y = 12, the above equation may be replaced by 
3x + 122 = 132, 


which in turn simplifies to x + 42 = 44. 
Stripped of inessentials, the object is to find integers xand 
z satisfying the Diophantine equation 


(t) xc 42 = 44. 
Inasmuch as gcd (1,4) = 1 is a divisor of 44, there is а solu- 


tion to this equation. Upon multiplying the relation 1 = 1(—3) 
+4. 1 by 44 to get 


44.— 1(—132) +4. 44, 


it follows that x, = —132, z, = 44 serves as one solution. АЙ other 
solutions of (*) are of the form 

wet, = 1321- AS 

z= 44-1, 
where t is an integer. 

Not all of the infinite set of values of г furnish solutions to 
the original problem. Only values of tshould be considered which 
will ensure that 12 > x > 6. This requires obtaining those t such 
that 


12z —132 t 4t 6. 


№. 


48 Divisibility Theory in the Integers 
Now, 12 = —132 + 4t implies that г = 36, while —132 + 4t 
> 6 gives 1 34 1. The only integral values of fto satisfy both in- 
equalities are г 35 and t= 36. Thus there are two possible pur- 
chases: a dozen apples costing 11 cents apiece (the case where 
t= 36), or else 8 apples at 12 cents each and 4 oranges at 9 cents - 
each (the.case where t. 35). 

Linear indeterminate problems such as these, have a long hi 
tory, occurring as early as the first century in the Chinese mathemati 
literature. Owing to a lack of algebraic symbolism, they often appeai 
in the guise of rhetorical puzzles or riddles. The contents of the Mai 
ematical Classic of Chang Ch’ iu-chien (sixth century) attest to the al 
gebraic abilities of the Chinese scholars. This elaborate treatise contai 
one of the most famous problems in indeterminate equations, in t 
sense of transmission to other societies—the problem of the “hun: 
fowls.” The problem states: 

If a cock is worth 5 coins, a hen 3 coins, and three chickens together 1 
coin, how many cocks, hens and chickens, totaling 100, can be bought for 
100 coins? 


In terms of equations, the problem would be written (if x equals 
number of cocks, y the number of hens, z the number of chickens): 


I 5х + + geo 100, x + y+ z= 100. 


Eliminating one of the unknowns, we are left with a linear Diophanti 
equation in the two other unknowns. Specifically, since 2 = 1 
—x-— y ме have 5х + 3y + 1/3 (100 — x — y) = 100, or 
7x + 4y — 100. 
This equation has the general solution x 41, y = 25 — 71, which 
2 = 75 + 3t, where tis an arbitrary integer. Chang himself gave seve 
answers: 
На х=4,у= 18,2 = 78; ‹ 
b baxobisnog 5d Dus, jti ze Blasio xh 
onn unge ue 12, y x4, z = 84. a: 

A little further effort produces all solutions in the positive integers. 
this, t must be chosen to satisfy simultaneously the inequalities 


412 0, 25 — 7t> 0, 75 + 3t>0. 


SECTION 2.4 The Diophantine Equation ax + by = c 49 


The last two of these are equivalent to the requirement —25 < / 
< 3 4, Since t must have a positive value, we conclude that г = 1, 2, 3, 
leading to precisely the values Chang obtained. 


PROBLEMS 2.4 


1. Which of the following Diophantine equations cannot be solved? 
(а) 6x + 51у = 22; 
(b) 33x + 14у = 115; 
(c) 14x + 35у = 93. 

2. Determine all solutions іп the integers of the following Diophan- 
tine equations: 

(a) 56x + 72y = 40; 

(b) 24x + 138y = 18; 

(c) 221x + 35y = 11. 

3. Determine all solutions in the positive integers of the following 
Diophantine equations: 

(a) 18x + Sy = 48; 

(b) 54x + 21у = 906, 

(с) 123х + 360у = 99; 

(d) 158x — 57y = 7. 

4. If aand bare relatively prime positive integers, prove that the Dio- 
phantine equation ax — by = chas infinitely many solutions in the 
positive integers. 

[Hint: There exist integers x, and y, such that ax, + by = 1. 

For any integer t, which is larger than both | x, | /В and | у, | /a, 

x= х + btand y, = —(y— at) are a positive solution of the given 

equation.] 

5. (a) Prove that the Diophantine equation ax + Ву + cz = d is 

; solvable in the integers if and only if gcd(a , b, c) divides d. 

(b) Find all solutions in the integers of 15x + 12y + 302 = 24. 
(Hint: Put y = 35 — Stand z= — 5+ 24] 

6. (a) Aman has $4.55 in change composed entirely of dimes and 
quarters. What are the maximum and minimum number of | 
coins that he can have? Is it possible for the number of dimes 
to equal the number of quarters? 

(b) The neighborhood theater charges $1.80 for adult admissions 
and 75 cents for children. On a-particular evening the total 
receipts were $90. Assuming that more adults than children 
were present, how many.people attended? 


50 Divisibility Theory in the Integers CHAPTER 2 


(c) Acertain number of sixes and nines are added to give a sum 
of 126; if the number of sixes and nines are interchanged, the 
new sum is 114. How many of each were there originally? 

7. A farmer purchased one hundred head of livestock for a total cost 
of $4000. Prices were as follow: calves, $120 each; lambs, $50 each; 
piglets, $25 each. If the farmer obtained at least one animal of each 
type how many did he buy? 

8. When Mr. Smith cashed a check at his bank, the teller mistook the 
number of cents for the number of dollars and vice versa. Unaware 
of this, Mr. Smith spent 68 cents and then noticed to his surprise 
that he had twice the amount of the original check. Determine the 
smallest value for which the check could have been written. 
[Hint: If x is the number of dollars and ythe number of cents in the 
check, then 100y + x — 68 = 2(100x + y).] 

9. Solve each of the puzzle-problems below: 

(a) Alcuin of York, 775. A hundred bushels of grain are distrib- 
uted among 100 persons in such a way that each man receives 
3 bushels, each woman 2 bushels, and each child % bushel. 
How many men, women, and children are there? 

(b) Mahaviracarya, 850. There were 63 equal piles of plantain fruit 
put together and 7 single fruits. They were divided evenly 
among 23 travelers. What is the number of fruits in each pile? 
[Hint: Consider the Diophantine equation 63x + 7 = 23y.] 

(c) Yen Kung, 1372. We have an unknown number of coins. If 
you make 77 strings of them, you are 50 coins short; but if you 
make 78 strings, it is exact. How many coins are there? [Hint: 
If N is the number of coins, then № = 77x + 27 = 78y for 
integers x and y.) 

(d) Christoff Rudolff, 1526. Find the number of men, women and 
children in a company of 20 persons if together they pay 20 
coins, each man paying 3, each woman 2, and each child 
1/2. 

(e) Euler, 1770. Divide 100 into two summands such that one is 
divisible by 7 and the other by 11. 


Primes 
and their 
Distribution 


“Mighty are numbers, 


joined with art. resistless."' 


EURIPIDES 


j 


3.1 THE FUNDAMENTAL THEOREM OF ARITHMETIC 


Essential to everything discussed herein—in fact, essential to every 
aspect of number theory—is the notion of a prime number. We have pre- 
viously observed that any integer a > 1 is divisible by +1 and +a; if 
these exhaust the divisors of a, then it is said to be a prime number. Put 
somewhat differently: 


DEFINITION 3-1. An integer p — 1 is called a prime number, ог 
simply a prime, if its only positive divisors 1 and p. An integer greater 
than 1 which is not a prime is termed composite. 


Among the first ten positive integers 2, 3, 5, 7 are all primes, while 
4, 6, 8, 9, 10 are composite numbers. Note that the integer 2 is the only 
even prime, and according to our definition the integer 1 plays a special 
role, being neither prime nor composite. 

For the rest of the book, the letters p and q will be reserved, so 
far as is possible, for primes. 

Proposition 14 of Book IX of Euclid's Elements embodies the 
result which later became known as the Fundamental Theorem of Arith- 
metic, namely, that every integer greater than 1 can, except for the order 
of the factors, be represented as a product of primes in one and only one 
way. To quote the proposition itself: “If a number be the least that is 
measured by prime numbers, it will not be measured by any other prime 
except those originally measuring it." Since every number is either a 
prime or, by the Fundamental Theorem, can be broken down into unique 
prime factors and no further, the primes serve as the "building blocks" 
from which all other integers can be made. Accordingly, the prime num- 
bers have intrigued mathematicians through the ages, and while a 
number of remarkable theorems relating to their distribution in the se- 
quence of positive integers have been proved, even more remarkable is 
what remains unproved. The open questions can be counted among the 
outstanding unsolved problems of all mathematics. 


» (SECTION 3.1 The Fundamental Theorem of Arithmetic 53 


To begin on a simpler note, we observe that the prime 3 divides 
the integer 36, where 36 may be written as any one of the products 


6:6=9.4 = 12.3 = 18.2. 


In each instance, 3 divides at least one of the factors involved in the 
product. This is typical of the general situation, the precise result being: 


THEOREM 3-1. Jf p is a prime and p| ab, then pla or pl b. 


Proof: И p| a, then we need go no further, so let us assume that 
рі a. Since the only positive divisors of p are 1 and p itself, this. 
implies that gcd(p , а) = 1. (In general, gcd(p , а) = p or 
gcd(p ; a) = 1 according as pla or p' a.) Hence, citing Euclid's 
Lemma, we get pl b. 


This theorem easily extends to products of more than two terms. 


COROLLARY 1. [fp isa prime and pl a,a,. . . a,, then pl a, for some 
k, where 1S k< n. 


Proof: We proceed by induction on n, the number of factors. When 
п = 1, the stated conclusion obviously holds, while for я = 2 the 
result is the content of Theorem 3-1. Suppose, as the induction hy: 
pothesis, that 2 > 2 and that whenever р divides a product of less 
than я factors, then it divides at least one of the factors, Now, let 
рі аа... ал. According to Theorem 3-1, either p| а, or else 
plaa,.. : dy- If pl a, then we are through. As regards the case 
plaa. . . an,- the induction hypothesis ensures that p| a, for 
some choice of k, with 1 = k € n — 1. In any event, р divides one 
of the integers @, 2, . . ., An. 


Сокомлву 2. If D, du ds ..., q, are all primes and 
214,4... : 4» then p = q, for some k, where l = k= п. 


Proof: By virtue of Corollary 1, we know that p| q, Юг some k; with 
1 = А = n. Beinga prime, 4, іѕ not divisible by any positive integer 
other than 1 or q, itself. Since p > 1, we are forced to conclude 
that p = 4,. 


54 Primes and Their Distribution CHAPTER 3 


With this preparation out of the way, we arrive at one of the cor- 
nerstones of our development, the Fundamental Theorem of Arithmetic. 
As indicated earlier, this theorem asserts that every integer greater than 
1 can be factored into primes in essentially one way; the linguistic am- 
biguity "essentially" means that 2 - 3 - 2 is not considered as being a 
different factorization of 12 from 2 » 2 - 3, Stated precisely: 


THEOREM 3-2 (Fundamental Theorem of Arithmetic). Every. posi- 
tive integer n > 1 can be expressed as a product of primes; this 
representation is unique, apart from the order in which the factors 
occur. 


Proof: Either n is a prime or it is composite; in the former case, 
there is nothing more to prove. If n is composite, then there exists 
an integer d'satisfying d| mand 1 < d < я. Among all such integers 
d choose p; to be the smallest (this is possible by the Well-Ordering 
Principle). Then p, must be a prime number. Otherwise, it too 
would have a divisor q with 1 < 4 < p; but then ql p, and p, n 
imply that q| n, which contradicts the choice of p, as the smallest 
positive divisor, not equal to 1, of n. 

We may therefore write n = p,n, where p, is prime and 
1 < n, < n. If n, happens to be a prime, then we have our rep- 
resentation. In the contrary case, the argument is repeated to pro- 
duce a second prime number p, such that 7, = Pnz; that is, 


п = ppm, 1< п, <”. 


If n is a prime, then it is not necessary to go further. Otherwise, write 
п, = p,n,, with p, a prime: 


п = Dip.psns, 1 <», < m. 
The decreasing sequence 
п> љ> љ> ... > 1 


cannot continue indefinitely, so that after a finite number of steps 7, 
-1 8 а prime, say p,. This leads to the prime factorization 


n7 bb De 


^ 


SECTION 3.1 The Fundamental Theorem of Arithmetic 55 


To establish the second part of the proof—the uniqueness of the Í 
prime factorization—let us suppose that the integer n can be repre- 
sented as a product of primes in two ways; say 


n7 pp; P5 d t I rss 


where the p,and q, are all primes, written in increasing magnitude so 
that 


PSPS SP WSO =... =4,. 
Since р | 4,4; ·· · а,, Corollary 2 of Theorem 3-1 tells us that p, = 4, 
for some k; but then p, = q,. Similar reasoning gives q, = p,, whence 
р: = а. We may cancel this common factor and obtain 
Dip: Pr = didi 4,. 


Now repeat the process to get р, = q, and, in its turn, 


Dit: Pr = 440 qe 
Continue in this fashion. If the inequality г < sheld, we would even- 
tually arrive at 
1742.14.14, 


which is absurd, since each 4, > 1. Hence r = sand 


Pi = Qs Pr = 4... Pe = 4, 


making the two factorizations of n identical. The proof is now com- 
plete. 


Of course, several of the primes which appear in the factoriza- 
tion of a given positive integer may be repeated as is the case with 
360 =2.2.2,3.3. 5. By collecting like primes and replacing them 
by a single factor, we could rephrase Theorem 3-2 as 


COROLLARY. Any positive integer n > 1 can be written uniquely in 
a canonical form . 

n T рр,“ ve eper , 
where, for i = 1,2,. . ., т, each k, is a positive integer and each 
pi is a prime, with p, < p, < --. < p,. 


/ 


56 Primes and Their Distribution CHAPTER 3 


To illustrate: the canonical form of the integer 360 is 360 = 
2* . 32.5. As further examples we cite 


4725 = 3° . 5. 7, and 17460 = 2? . 33.5. 72. 


Theorem 3-2 should not be taken lightly, for there do exist 
number systems in which the factorization into “primes” is not-unique. — 
Perhaps the most elemental example is the set Е of all positive even in- | 
tegers. Let us agree to call an even integer an e-prime if it is not the 
product of two other even integers. Thus, 2, 6, 10, 14,. . . are all e-primes 
while 4, 8, 12, 16,... . are not. It is not difficult to see that the integer 
60 can be factored into e-primes in two distinct ways; namely, 


60 =2-30=6- 10. 


Part of the trouble arises from the fact that Theorem 3-1 is lacking in _ 
the set £:6|2 - 30, but 6 { 2 and 6 / 30. 

This is an opportune moment to insert a famous result of Ру: 
thagoras. Mathematics as a science began with Pythagoras (569—500 вс.), 
and much of the content of Euclid's Elements is due to Pythagoras and 
his School. The Pythagoreans deserve the credit for being the first to 
classify numbers into odd and even, prime and composite. 


THEOREM 3-3 (Pythagoras). The number \/2 is irrational. 


Proof: Suppose to the contrary that 2 is a rational number; say, 
V2= a/b, where a and b are both integers with gcd(a , b) = 1. 
Squaring, we get а? = 202, so that b| æ. If b > 1, then the Fun- 
damental Theorem of Arithmetic guarantees the existence of a 
prime p such that p| b. It follows that p| а and, by Theorem 3-1, 
that p| a; hence, gcd(a , b) = р. We therefore arrive at a contra- 
diction, unless b = 1. But if this happens, then 2 = 2, which is 
impossible (we assume that the reader is willing to grant that no 
integer can be multiplied by itself to give 2). Our supposition 
‘that V/Z is a rational number is untenable and so VZ must be ir- 
rational, ' X 


SECTION 3.1 The Fundamental Theorem of Arithmetic 57 


PROBLEMS 3.1 


1. It has been conjectured that there are infinitely many primes of the 
form 7? — 2. Exhibit five such primes. 
2. Give an example to show that the following conjecture is not true: 


Eve: 
ise 


ту positive integer сап be written in the form p + æ, where р 
ither a prime or 1, and а = 0. 


Prove each of the assertions below: 
(a) Any prime of the form 37 +1 is also of the form 6m + 1. 
(b) Each integer of the form 3» + 2 has a prime factor of this 


form. 


(c) The only prime of the form и — 1 is 7. [Hint: Write n? — 1 


(d) 


(e) 
If p 


as (n — 1) (+ n+ 1] 
The only prime p for which 3p + 1 is a perfect square is 
р= 5. 
The only prime of the form z? — 4 is 5. 
> 5 is a prime number, show that f? + 2 is composite. [Hint: 


D takes one of the forms 6k + 1 or 6k + 5.] 


(a) 
(b) 


Given that p is a prime and p| a", prove that p" | a". 
If gcd(a , b) = p, a prime, what are the possible values of 
gcd(a , Б), gcd(z , b) and вса(а? , в)? 


Establish each of the following statements: 


(a) 


- (b) 


(с) 
(d) 


Every integer of the form n' + 4, with n > 1, is composite. 
[Hint: Write n + 4 as a product of two quadratic factors.) 

If > 4 is composite, then я divides (n — 1)!. 

Any integer of the form 8" + 1, where n = 1, is composite, 
[Hint: 27 + 112 + 1] 

Each integer n > 11 can be written as the sum of two com- 
posite numbers. [Hint: If n is even, say n = 2k, then n — 6 
= 2(k — 3); for n odd, consider the integer n — 9.) 


7. Find all prime numbers that divide 501. 
8. If p= qz 5 and pand qare both primes, prove that 24 | p? — Ф. 
9. (a) An unanswered question is whether there are infinitely many 


primes which are 1 more than a power of 2, such as 5 — 
2* + 1. Find two more of these primes. 


58 


10. 


11. 


12. 
13. 


14. 


15. 


16. 


17. 


18. 


Primes and Their Distribution CHAPTER 3 


(b) A more general conjecture is that there exist infinitely many 
primes of the form 7? + 1; for example, 257-= 16? + 1. Ех. 
hibit five more primes of this type. 

If p * 5 is an odd prime, prove that either p — 1 or f? + 1 is 

divisible by 10. (Hint: p takes one of the forms 10k + 1, 10k + 3, 

10k + 7 or 10k + 9] 

Another unproven conjecture is that there are an infinitude of primes 
which are 1 less than a power of 2, such as 3 = 2? — 1. 

(а) Find four more of these primes. 

(b) If p = 2^ — 1 is prime, show that k is an odd integer, except 
when k = 2. [Hint: 314" — 1 for all n= 1) 

Find the prime factorization of the integers 1234, 10140, and 36000. 
If n > 1 is an integer not of the form 62 + 3, prove that n? + 2” is 
composite. (Hint; Show that either 2 or 3 divides 72 + 2”.] 

It has been conjectured that every even integer can be written as 
the difference of two consecutive primes in infinitely many ways. 
For example, 

6 = 29 — 23 = 137 — 131 = 599 — 593 = 1019 — 1013 = .... 
Express the integer 10 as the difference of two consecutive primes 
in fifteen ways. 

Prove that a positive integer a > 1 is a square if and only if in the 
canonical form of a all the exponents of the primes are even inte- 
gers. 

An integer is said to be square-free if it is not divisible by the square 
of any integer greater than 1. Prove that 

(a) aninteger n> 1 is square free if and only if n can be factored 
into a product of distinct primes; 

(b) every integer n > 1 is the product of a square-free integer 
and a perfect square. (Hint: If n = pipi ... Р,“ is the can- 
onical factorization of n, write k, = 24, + r, where r, = 0 or 
1 according as k, is even or odd.} 

Verify that any integer can be expressed as и = 2%, where 
k= 0 and m is an odd integer. 

Numerical evidence makes it plausible that there are infinitely many 
primes p such that Р + 50 is also prime. List fifteen of these primes. 


| 


y 


SECTION 3.2 The Sieve of Eratosthenes 59 


3.2 THE SIEVE OF ERATOSTHENES 


Given a particular integer, how can we determine whether it is prime or 
composite and, in the latter case, how can we actually find a nontrivial 
divisor? The most obvious approach consists of successively dividing the 
integer in question by each of the numbers preceding it; if none of them 
(except 1) serves as a divisor, then the integer must be prime. Although 
this method is very simple to describe, it cannot be regarded as useful 
in practice. For even if one is undaunted by large calculations, the amount 
of time and work involved may be prohibitive. 

There is a property of composite numbers which allows us to 
reduce materially the necessary computations—but still the above pro- 
cess remains cumbersome. If an integer a > 1 is composite, then it may 
be written as а = be, where 1 < b < aand 1 < c < a. Assuming that 
b = c, we get b? = bc = aand so b < Va. Since 6 > 1, Theorem 3-2 
ensures that b has at least one prime factor р. Then p= bs Va; fur- 
thermore, because p| band b| a, it follows that pl a. The point is simply 
this: a composite number а will always possess a prime divisor p satis- 
fying ps уа. 

In testing the primality of a specific integer a > 1, it therefore 
suffices to divide а by those primes not exceeding Ма (presuming, of 
course, the availability of a list of primes upto үа). This may be clarified 
by considering the integer а = 509. Inasmuch as 22 < V509 < 23, we 
need only try out the primes which are not larger than 22 as possible 
divisors; namely, the primes 2, 3, 5, 7, 11, 13, 17, 19. Dividing 509 by 
each of these in turn, we find that none serves as a divisor of 509. The 
conclusion is that 509 must be a prime number. 


Example 3-1 

The foregoing technique provides a practical means for deter. 
mining the canonical form of an integer, say a — 2093. Since 45 
< V2093 < 46, it is enough to examine the primes 2, 3, 5, 7, 11, 
13, 17, 19, 23, 29, 31, 37, 41, 43. By trial, the first of these to divide 
2093 is 7 and 2093 — 7 . 299. As regards the integer 299, the seven 
primes which are less than 18 (note that 17 < №299 < 18) are 2, 
3,5, 7, 11, 13, 17. The first prime divisor of 299 is 13 and, carrying 
out the required division, we obtain 299 — 13 . 23. But 23 is itself 
a prime, whence 2093 has exactly three prime factors, 7, 13, and 
23: 


2095 — 7.13.23. 


60 Primes and Their Distribution CHAPTER 3 


Another Greek mathematician whose work in number theory re- 
mains significant is Eratosthenes of Cyrene (276-194 в.с.). While pos- — 
terity remembers him mainly as the director of the world-famous library 
at Alexandria, Eratosthenes was gifted in all branches of learning, if not 
of first rank in any; in his own day, he was nicknamed “Beta” because, 
it was said, he stood at least second in every field. Perhaps the most im- 
pressive feat of Eratosthenes was the accurate measurement of the earth's 
circumference by a simple application of Euclidean geometry. 

We have seen that if an integer a > 1 is not divisible by a prime 
p = Va, then a is of necessity a prime. Eratosthenes used this fact as 
the basis of a clever technique, called the “Sieve of Eratosthenes," for 
finding all primes below a given integer п. The scheme calls for writing 
down the integers from 2 to n in their natural order and-then system- 
atically eliminating all the composite numbers by striking out all mul- 
tiples 2p, 3p, 4p, 5p, . . . of the primes p = y/n. The integers that аге 
left on the list—those that do not fall through the "sieve"—are primes. 

To see an example of how this works, suppose that we wish to 
find all primes not exceeding 100. Consider the sequence of consecutive 
integers 2, 3, 4, . . . ,100. Recognizing that 2 is a prime, we begin by 
crossing out all even integers from our listing, except 2 itself. The first 
of the remaining integers is 3, which must be a prime. We keep 3, but 
strike out all higher multiples of 3, so that 9, 15, 21, . . . are now re- 
moved (the even multiples of 3 having been removed in the previous 
step). The smallest integer after 3 which has not yet been deleted is 5. 
It is not divisible by either 2 or 3—otherwise it would have been crossed 
out—hence it is also a prime. All proper multiples of 5 being composite 
numbers, we next remove 10, 15, 20,. . . (some of these are, of course, 
already missing), while retaining 5 itself. The first surviving integer 7 is 
a prime, for it is not divisible by 2, 3, or 5, the only primes that precede 
it. After eliminating the proper multiples of 7, the largest prime less than 
У100 = 10, all composite integers in the sequence 2, 3, 4, . . .,100 have 
fallen through the sieve. The positive integers which remain, to wit, 2, 
5,5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47, 53, 59, 61, 67, 71, 73, 79, 
85, 89, 97, are all of the primes less than 100. 

The table below represents the result of the completed sieve. 
The multiples of 2 are crossed out by V; the multiples of 3 are crossed 
out by /; the multiples of 5 are crossed out Бун ; the multiples of 7 аге 
crossed out by -- 


SECTION 3.2 The Sieve of Eratosthenes 61 
3 


2 yall: acu АЕТ del ipsi s 
о С 13 7 ЕЕ Neer Кио ЕЕ 2 
24:00:29 7023. ола» 38 
310232: 34 а И в 
4 3X 43 X 44 23& 47 BM 4 5% 
5 39" 5300 347 55 ВХ 08-59 Pe 
6 5 65 M 6- K 607 68 $695 ә 
а с та аиа ор ОНЕ 
и 82 83 м = кю Я № 89 dE- 
+ ә 95 м 5 ж 97 м 9 e 


By this point, ап obvious question must have occurred to the 
reader. Is there a largest prime number, or do the primes go on forever? 
The answer is to be found in a remarkably simple proof given by Euclid 
in Book IX of his Elements. Euclid's argument is universally regarded 
as a model of mathematical elegance. Loosely speaking, it goes like this: 
Given any finite list of prime numbers, one can always find a prinie not 
on the list; hence, the number of primes is infinite. The actual details 
appear below. 


THEOREM 3-4 (Euclid). There are an infinite number of primes. 


Proof: Euclid's proof is by contradiction. Let p, = 2, p, = 3, 
Ps = 5,p, = 7,. . . be the primes in ascending order, and suppose 
that there is a last prime; called р,. Now consider the positive in- 
teger 


P= рр, p 


Since P > 1, we may put Theorem 3-2 to work once again and 
conclude that P is divisible by some prime p. But p, P», . . - , Pn 
are the only prime numbers, so that p must be equal to one of p,, 
D». » „Р Combining the relation p| pp, --- p, with pl B, we 
arrive at pl P — pip, --- p, ог, equivalently, pl 1. The only positive 
divisor of the integer 1 is 1 itself and, since р > 1, a contradiction 
arises. Thus no finite list of primes is complete, whence the number 
of primes is infinite. 
For a prime р, define p» to be the product of all primes that are 


less than or equal to p. Numbers of the form р» + 1 might be dubbed 
"Euclidean numbers," since they appear in Euclid's scheme for proving 


62 —— Primes and Their Distribution CHAPTER 3 


the infinitude of primes. It is interesting to note that in forming these 
integers, the first five, namely 
2 +1=2+1=3, 
3 +1=2.3+1=7, 
5°+1=2-3-5+1=31, 
7 *1-72-3.5.7*1-7211, 
1'**1-72.3.5.7.11 £1 2311, 


are all prime numbers. However, 


13” + 1 = 59 509, 
17° £17 19.97. 277, 
19” +1 = 347 . 27953 


are not prime, A question whose answer is not known is whether there 
are infinitely many primes p for which р” + 1 is also prime. For that 
matter, are there infinitely many composite р” + 1? 

At present, fifteen primes of the form р” + 1 have been identi- 
fied. These correspond to the values p = 2,3, 5, 7, 11, 31, 379, 1019, 
1021, 2657, 3229, 4547, 4787, 11549, and 13649, the largest of these 
having been discovered in 1987; p* + 1 is composite for all other 
р S 17159. 

Euclid’s Theorem is too important for us to be content with а 
single proof. Here is a variation in the reasoning: Form the infinite se- 
quence of positive integers 


m = 2, 

m=n, +1, 
п = тп, + 1, 
т = nnn, + 1, 


ть = тт n tl, 


SECTION 3.2 The Sieve of Eratosthenes 63 


Since each 7, > 1, each of these integers is divisible by a prime. But 
no two я, can have the same prime divisor. To see this, let d = 
gcd(z,, п») and suppose that  « k. Then ddivides п, hence must divide 
п.п, +++ B, y Since d| n, Theorem 2-2 (7) tells us that d| п, — пп, 
- n, - , Or 411. The implication is that d = 1 and so the integers 
n,(k = 1,2,. . . ) are pairwise relatively prime. The point which we 
wish to make is that there are as many distinct primes as there are in- 
tegers л,, namely, infinitely’ many of them. 
Let p, denote the mh of the prime numbers in their natural order. 
Euclid's proof shows that an estimate to the rate of increase of p, is 


Put 1S Ds s Pat 1 <p," + 1. 
For instance, when n = 3, the inequality states that 
7=р < р +1= 5 +1 = 126. 


One can see that this estimate is wildly extravagant. A sharper limitation 
to the size of p, is given in 


THEOREM 3-5. Jf p, is the nth prime number, then p, = 2?" ^ '. 


Proof: Let us proceed by induction on л, the asserted inequality 
being clearly true when л = 1. As hypothesis of the induction, we 
assume that n > 1 and that the result holds for all integers up to 
п. Then 


Pari Spip, 1 А 
а Е 


Recalling the identity 142424... +2971 = 2" — 1, we 
obtain 7 


Poe ато. 
But 1 = 22" - ! for all я; whence р 
а 
= 2-2-1 = 22", 
- completing the induction step, and the argument. 


There is a corollary to Theorem 3-5 which is of interest. 


64 Primes and Their Distribution CHAPTER 3 


Corottary. For п = 1, there are at least n + 1 primes less than 
"lid 


Proof: From the theorem, we know that р,, f; . . ., р, +, are all 
less than 22", 


Primes of special form have been of perennial interest. Among 
these, the repunit primes are outstanding in their simplicity. A repunit 
is an integer written (in decimal notation) as a string of 1s, such as 11, 
111, or 1111. Each such integer must have the form (10" — 1)/9. We use 
the symbol R, to denote the repunit consisting of л consecutive 1s. One 
peculiar feature of these numbers is the apparent scarcity of primes 
among them. 50 far, only 


К», Rig, Rs, Ку, апа Ком 


have been identified as primes (the last one in 1985). It is known that 
the only possible repunit primes R, for all n = 10000 are the five num- 
bers just indicated. No conjecture has been made as to the existence of 
any others. For a repunit R, to be prime, the subscript я must be a prime; 
that this is not a sufficient condition is shown by 


К, = 11111 = 41. 271, R, = 1111111 = 229 . 4649. 


PROBLEMS 3.2 


s 


Determine whether the integer 701 is prime by testing all primes 
D = У701 as possible divisors. Do the same for the integer 1009. 
Employing the Sieve of Eratosthenes, obtain all the primes be- 
tween 100 and 200. 
Given that p/ nforall primesp = v/n, show that nis either a prime 
or the product of two primes. [Hint: Assume to the contrary that п 
contains at least three prime factors.] 
Establish the following facts: 

(à) Vpis irrational for any prime p. 

(b) 1f a> 0 and {а is rational, then Wa must be an integer. 

(c) For n = 2, Y/n is irrational, (Hint: Use the fact that 2" > 7] 
Show that any composite three-digit number must have a prime 
factor less than or equal to 31. 


N 


P 


ben 


- 


SECTION 3.2 The Sieve of Eratosthenes 65 


ғ 


7 


10. 


11. 


12. 


13. 


Fill in any missing details in this sketch of a proof of ће infinitude 
of primes: Assume that there are only finitely many primes, say pi, 
Pa- - ++ Pw Let Abe the product of any rof these primes and put 
B= рр, -+ p,/A. Then each p, divides either A or В, but not both. 
Since А + B > 1, A + B has a prime divisor different from any of 
the p,, a contradiction. 
Modify Euclid's proof that there are infinitely many primes by as- 
suming the existence of a largest prime p and using the integer 
N= р + 1 to arrive at a contradiction. 
Give another proof of the infinitude of primes by assuming that there 
are only finitely many primes, say р, P» © . -> Pw and using the 
integer F 

N= рр ep, + PD ep, ecc pbi pO 
to arrive at a contradiction. 

(a) Prove that if я > 2, then there exists a prime p satisfying 
n< p< nl. Hint: If n! — 1 is not prime, then it has a prime 
divisor p; and p = n implies p hi, leading to a contradiction.) 

(b) For n > 1, show that every prime divisor of n! + 1 is an odd 
integer greater than я. 

Let 4, be the smallest prime which is strictly greater than P, 
= рр, --- p, + 1. It has been conjectured that the difference 

(pps +++ Pn) — Gn is always a prime. Confirm this for the first five 

values of n. 

If p, denotes the nth prime number, put d, = р,+. — Prw An open 
question is whether the equation d, — d, + , has,infinitely many 
solutions; give five solutions. 

Assuming that p, is the nth prime number, establish each of the 
following statements: 

(а) p,7 2n — 1forn z 5. 

(b) None of the integers P, = pip; +> p, + lisa perfect square. 
[Hint: Each P, is of the form 4k + 3.] 

(c) The sum 


is never an integer. t 
(a) For the repunits R,, prove that if k| n, then К» | R,. [Hint: If 
n= kr, consider the identity 


А x"—1- (0 1) (erm PE хе... Бх 61] 
(b) Use part (a) to obtain the prime factors of the repunit Ryo. 


- 66 Primes and Their Distribution CHAPTER 3 


3.3 THE GOLDBACH CONJECTURE 


While there is an infinitude of primes, their distribution within the pos- 
itive integers is most mystifying. Repeatedly in their distribution one finds 
hints or, as it were, shadows of a pattern; yet an actual pattern amenable ` 

‚ © precise description remains unfound. The difference between con- 
secutive primes can be small as with the pairs 11 and 13, 17, and 19, or 
for that matter 1,000,000,000,061 and 1,000,000,000,063. At the same time 
there exist arbitrarily long intervals in the sequence of integers which 
are totally devoid of any primes. 

It is an unanswered question whether there are infinitely many 
pairs of twin primes; that is, pairs of successive odd integers p and 
D + 2 which are both primes. Numerical evidence leads us to suspect 
an affirmative conclusion. Electronic computers have discovered 152,892 
pairs of twin primes less than 30,000,000 and twenty pairs between 10" 
and 10'? + 10,000, which hints at their growing scarcity as the positive 
integers increase in magnitude. Many immense examples of twins are 

own. The largest to date is 


107570463 . 107259 + 1, 


each 2259 decimal digits long, were discovered in 1985, 

Consecutive primes can not only be close together, but also be 
far apart; that is, arbitrarily large gaps can occur between consecutive 
primes. Stated precisely: Given any positive integer я, there exist n con- 
зесицуе integers, all of which are composite. To prove this, we need 
simply consider the integers 


(n t 1)! + 2, (n t 1)! +3, eoo d D (n+ 1), 


where (n +1)! = (n +1): m... 3-2. 1. Clearly there are n integers 
listed and they are consecutive. What is important is that each integer is 
composite; for, (n + 1)! + 2 is divisible by 2, (п + 1)! + 3 is divisible 
by 3, and so on. 


For instance, if a sequence of four consecutive composite inte- 
gers is desired, then the argument above produces 122, 123, 124, and 


125: 

E ў 5+2 = 122=2. 61, 
5! +3 = 123 = 3.41, 
51 + 4 = 124 = 4 . 31, 
19 5 = 125 = 5325. 


SECTION 3.3 The Goldbach Conjecture 67 


Of course, one can find other sets of four consecutive composites, such 
as 24, 25, 26, 27 or 32, 33, 34, 35. 

As this example suggests, our procedure for identifying gaps be- 
tween two consecutive primes gives a gross overestimate of where they 
occur among the integers. A large prime gap of width 654 (that is, 
Pn + 1.7 Pn = 654) was disclosed recently following the prime 
11,000,001,446,613,353; only smaller gaps occur below this prime. 
Theoretically, a gap of length at least 654 can be obtained following 
the integer 654! + 1, but this is of little practical value, since 
654! ~ (1.47)10!*», 

This brings us to another unsolved problem concerning primes, 
the Goldbach Conjecture. In a letter to Euler (1742), Christian Gold- 
bach hazarded the guess that every even integer is the sum of two num-, 
bers that are either primes or 1. A somewhat more general formulation 
is that every even integer greater than 4 can be written as a sum of two 
odd prime numbers. This is easy to confirm for the first few even inte- 
gers: 

2=1+1 

4=2+2=1+3 

6=3+3=1+ 5 

8= 3+5=1 +7 

105299771575 

12=5+7=1+1 

14=3+1=7+7=1 +13 

16 =3 + 13=5+11 

18=5 + 13=7+11=1+17 

20=3+ 17 =7 +13 = 1 + 19 

22=35+19=5+17=1 +11 

24=5+19=7+17= 11 +13 =1+ 23 

26 =3+ 23 = 7 + 19 = 13 + 13 

28 = 5 + 23 = 11 + 17 

30 =7 +23 = 11 + 19 = 13 +17 = 1 + 29. 
It seems that Euler never tried to prove the result, but, writing to Gold- 
bach at a later date he countered with a conjecture of his own: any even 
integer (>6) of the form 4n + 2 is a sum of two numbers each being 
either primes of the form án + 1 or 1. 


68 Primes and Their Distribution CHAPTER 3 


The numerical data suggesting the truth of Goldbach's conjec- 
ture is overwhelming. It has been verified by direct computation for all 
even integers less than 10*. Most even numbers 2m, where 0 < 2m 
< 10*, were found to be sums of a "small" prime (small meaning one 
of the first 150 primes) and a prime rather close to 2m. Although this 
supports the feeling that Goldbach was correct in his conjecture, it is far 
from a mathematical proof, and all attempts to obtain a proof have been 
completely unsuccessful. One of the most famous number theorists of 
this century, G. H. Hardy, in his address to the Mathematical Society of 
Copenhagen in 1921, stated that the Goldbach conjecture appeared ". . . 
probably as difficult as any of the unsolved problems in mathematics." 

We remark that if the conjecture of Goldbach is true, then each 
odd number larger than 7 must be the sum of three odd primes. For, take 
n to be an odd integer greater than 7, so that n — 3 is even and greater 
than 4; if n — 3 could be expressed as the sum of two odd primes, then 
п would be the sum of three. 

The first real progress on the conjecture in nearly 200 years was 
made by Hardy and Littlewood in 1922. On the basis of a certain un- 
proved hypothesis, the so-called generalized Riemann hypothesis, they 
showed that every sufficiently large odd number is the sum of three odd 
Primes. In 1937, the Russian mathematician I. M. Vinogradov was able 
to remove the dependence on the generalized Riemann hypothesis, 
thereby giving an unconditional proof of this result; that is to say, he 
established that all odd integers greater than some effectively comput- 
able л, can be written as the sum of three odd primes. 


n= p, +p + ps (п odd, n sufficiently large). 


Vinogradov was unable to decide how large по should be, but Borozdkin 
(1956) proved that n, < 33°, It follows immediately that every even in- 
teger from some point on is the sum of either two or four primes. Thus, 
it is enough to answer the question for every odd integer n in the range 
9 = п = n, which, Юга given integer, becomes a matter of tedious 
computation (unfortunately, э, is so large that this exceeds the capa- 
bilities of the most modern electronic computers). 

\ Another problem closely connected with the conjecture of 
Goldbach is whether every even number is the sum of two “almost 
primes"' that is, the sum of two integers each having not more than a 
certain number of prime factors. The smaller the number of factors, the 
better the result. The first theorem of this kind was obtained by Brun 
(1920), who showed that every sufficiently large even number can be 
written as the sum of two terms, where each has at most 9 prime factors. 
Later, Buchstab (1940) improved the result to 4 prime factors. 


SECTION 3.3 The Goldbach Conjecture 69 


In 1948, the Hungarian mathematician Renyi established that 
every large even integer л is the sum of a prime and an “almost prime”: 


n-7ptbb---p, (n even, n sufficiently large). 


In Renyi's proof, r is very large. If it could be shown that r — 1, this 
would prove Goldbach's Conjecture for all large ». The subsequent work 
of Wang (1959) enabled one to take r = 4, while A. I. Vinogradov (1965) 
further reduced the estimate to r = 3. The closest anyone has come to 
settling the conjecture by this approach is the 1966 result of Chen Jing- 
Run, which says r = 2; in other words, from some point on, every even 
integer is the sum ofa prime and a product of at most two primes. Chen's 
original proof was very long, but in 1973 he improved the argument and 
reduced its length to 20 pages. 

Because of the strong evidence in favor of Goldbach's famous 
conjecture, one readily becomes convinced that it is true. It nevertheless 
might be false. Vinogradov showed that if A(x) is the number of even 
integers n = x which are not the sum of two primes, then 


lim A@)/x = 0. 


This allows us to say that “almost all" even integers satisfy the conjec- 
ture. As Edmund Landau so aptly put it, “The Goldbach conjecture is 
false for at most 0% of all even integers; this at most 0% does not ex- 
clude, of course, the possibility that there are infinitely many excep 
tions.” 

Having digressed somewhat, let us observe that according to the 
Divison Algorithm, every positive integer can be written uniquely in one 
of the forms 


4п, án + 1,án + 2,4n t 5 


for some suitable n = 0. Clearly the integers 4n and ám + 2 = 
2(2n + 1) are both even. Thus, all odd integers fall into two progres- 
sions: one containing integers of the form 4n + 1, 


1,575. AS sy pee ts ias 
and the other containing integers of the form 4n + 3, 
3.771115; 19/23, 7. 


While each of these progressions includes some obviously prime num- 
bers, the question arises‘ as to whether each of them contains infinitely 
miany primes. This provides a pleasant opportunity for a repeat perfor- 
mance of Euclid's method for proving the existence of an infinitude of 


70 Primes and Their Distribution CHAPTER 3, 


primes. A slight modification of his argument reveals that there are an 
infinite number of primes of the form 4n + 3. We approach the proof 
through a simple lemma. 


LEMMA. The product of two or more integers of the form án + 1 is 
of the same form. 


Proof: It is sufficient to consider the product of just two integers. 
Let k = án + Тапа = ám + 1. Multiplying these together, we 
obtain 


kk = (án + 1)(4m + 1) 
= lónm + án + 4m+1=4(4nm+n+ m) +1, 


which is of the desired form. 


^ .This paves the way for: 


+ THEOREM 3-6. There is an infinite number of primes of tbe form 
án t 3. 


Proof: In anticipation of a contradiction, let us assume that there 
exist only finitely many primes of the form 4n + 3; call them 
dv» Ф... qe Consider the positive integer 


N= 444 +++ 4. -1= 4(44,-..4—1) +3 


and let N= rr, +++ r,be its prime factorization. Since N is an odd 
integer, we have r, * 2 for all k, so that each r,is either of the form 
án + lor án + 3. By the Lemma, the product of any number of 
primes of the form 4n + 1 is again an integer of this type. For Мю 
take the form 4n + 3,as it clearly does, N must contain at least one 
prime factor r, of the form 4n 4- 3. But 7, cannot be found among 
the listing 4, qa. . ., g,, for this would lead to the contradiction 
that r,| 1. The only possible conclusion is that there are infinitely 
many primes of the form 4n + 3. 


Having just seen that there are infinitely many primes of the form 
Án + 3, one might reasonably ask: Is the number of primes of the form 
4n + 1also infinite? This answer is likewise in the affirmative, but a dem- 
onstration must await the development of the necessary mathematical 
machinery. Both these results are Special cases of a remarkable theorem 
by Dirichlet on primes in arithmetic Progressions, established in 1837. 


SECTION 3.3 The Goldbach Conjecture 71 


The proof is much too difficult for inclusion here, so that we content 
ourselves with the mere statement. 


THEOREM 3-7 (Dirichlet). /f a and b are relatively prime positive 
integers, then the arithmetic progression 


a4at+bat2bat 3b... 
contains infinitely many primes. 


Dirichlets Theorem tells us, for instance, that there are infi- 
nitely many prime numbers ending in 999, such as 1999, 100999, 1000999, 

. . ., for these appear in the arithmetic progression determined by 
10007 + 999, where gcd(1000, 999) = 1. 

There is no arithmetic progression a, a + b, a + 2b,. . . that 
consists solely of prime numbers. To. see this, suppose that а + nb: 
= p, where p is a prime. If we put и, = n + kp for k 1, 2,3,..., 
then the 7th term in the progression is 


а n,b-— a-t (n+ kp)b = (at nb) + kpb = p+ kpb. 


Since each term on the right-hand side is divisible by p, so is a + nb. 
In other words, the progression must contain infinitely many composite 
numbers. 

It is an old, but still unsolved question whether there exist ar- 
bitrarily long but finite arithmetic progressions consisting only of prime 
numbers (not necessarily consecutive primes). The longest progression 
found to date is composed of the 19 primes. ` 


8297644387 + 4180566390 п (0x n < 18). 
The prime factorization of the common difference between the terms is 
2.3.5.7-11-13- 17. 19 - 431, 
which is divisible by 510510, the product of the primes less than 19. This 
takes place according to the following theorem: 
THEOREM 3-8. If tbe n > 2 terms of the arithmetic progression 
bbtdpt24...,pt (n— Dad 


are all prime numbers, then tbe common difference d is divisible 
by every prime 4 < n. 


72 Primes and Their Distribution CHAPTER 3 


Proof: Consider a prime number 4 < n, and assume to the contrary 
that g / d. We claim that the first q terms of the progression, 


(1) bbptdpt2d ...,pt (q— 1), 


will leave different remainders when divided by g. Otherwise, there 
exist integers jand kwith 0 = j< k = q — 1 such that the numbers 
р + jdand р + kd yield the same remainder upon division by q. 
Then 4 divides their difference (k — j)d. But gcd(q, d) = 1, and 
so Euclid's Lemma leads to q| k — j, which is nonsense in light of 
the inequality k — /=а- 1. 

Since the q different remainders produced from (1) are 
drawn from the 4 integers 0, 1,. . ., q — 1, one of these remain- 
ders must be zero. This means that q| p + td for some t satisfying 
0 St 4 — 1. Because а < n S p S p + td, we are therefore 
forced to conclude that p + td is composite. (If p < n, one of the 
terms of the progression would be p + pd = p(1 + d).) With this 
€ontradiction, the proof that 4| d is complete. 


It has been conjectured that there exist arithmetic progressions 
of finite (but otherwise arbitrary) length, composed of consecutive prime 
numbers. Examples of such progressions consisting of three and four 
primes, respectively, are 41, 47, 53 and 251, 257, 263, 269. Not long ago, 
a computer search revealed progressions of five and six consecutive 
primes, the terms having a common difference of 30; these begin with 
the primes 


9,843,019 and 121,174,811. 


We are not able to discover, at least for the time being, an arithmetic 
progression consisting of seven consecutive primes. When the restric- 
tion that the prime numbers involved be consecutive is removed, then 
it is possible to find infinitely many sets of seven primes in an arithmetic 
progression; one such is 7, 157, 307, 457, 607, 757, 907. 

In interests of completeness, we might mention another famous 
problem that so far has resisted the most determined attack. For centu- 
ries, mathematicians have sought a simple formula that would yield every 
prime number or, failing this, a formula that would produce nothing but 


SECTION 3.3 The Goldbach Conjecture 73 


primes. At first glance, the request seems modest enough: find a function 
(п) whose domain is, say, the nonnegative integers and whose range is 
some infinite subset of the set of all primes. It was widely believed in 
the Middle Ages that the quadratic polynomial 


Хп) = т+п+41 


assumed only prime values. As evidenced by the following table, the 


claim is a correct опе for n = 0, 1,2,. . ., 39. 
п fn) п Хп) п Ла) 
0 41 14 251 28 853 
1 43 15 281 29 911 
2 47 16 513 30 971 
3 53 17 347 31 1033 
4 61 18 383 32 1097 
5 71 19 421 33 1163 
6 83 20 461 34 1231 
7 97 21 503 35 1301 
8 113 22 547 36 1373 
ЭС 131 23 593 37 1447 
10 151 24 641 38 1523 
1 173 25 691 39 1601 


12 197 26 743 
13 223 27 797 


However, this provocative conjecture is shattered in the cases 
п = 40 and я = 41, where there is а factor of 41: 


f(40) = 40: 41 + 41 = 412 
апа 
f(41) = 41.42 +41 = 41. 43. 


The next value /(42) = 1747 turns out to be prime once again. It is not 
presently known whether f(n) = n? + п + 41 assumes infinitely many 
prime values for integral n. 


74 Primes and Their Distribution CHAPTER 3 


The failure of the above function to be prime-producing is no 
accident, for it is easy to prove that there is no nonconstant polynomial 
Кп) with integral coefficients which takes on just prime values for in- 
tegral n. We assume that such a polynomial f(n) actually does exist and 
argue until a contradiction is reached. Let 


Кп) = ат + a-n. + ат + ап+ a, 


where the coefficients a, @,. . ., a, are all integers and а, # 0. Fora 
fixed value of л, say n = m, p = (то) is a prime number. Now, for any 
integer t, we consider the expression f(m + tp): 


Кт + tp) = ag + tp) +... + alm + dp) + а 
= (anf + +++ ат + а) + роб) 
= fim) + porn 1 
= pt род = Ра + 00), 


where Q(/) is a polynomial in г having integral coefficients. Our rea- 
soning shows that p|f(™ + tp); hence, from our own assumption that 
f(n) takes on only prime values, /(ж, + tp) = p for any integer t. Since 
a polynomial of degree & cannot assume the same value more than k 
times, we have obtained the required contradiction. 

Recent years have seen a measure of success in the search for 
prime-producing functions. W. H. Mills proved (1947) that there exists 
а positive real number r such that the expression f(n) = [73"] is prime 
forn = 1,2,3,. . . (the bracket indicates the greatest integer function). 
Needless to say, this is strictly an existence theorem and nothing is known 
about the actual value of r. 


PROBLEMS 3.3 


1. Verify that the integers 1949 and 1951 are twin primes. 
2. (a) If 1 is added to a product of twin primes, prove that a perfect 
Square is always obtained. 
(b) Show that the sum of twin primes p and p + 2 is divisible by 
12, provided that p > 3. 
-.. Find all pairs of primes p and q satisfying p — q = 3. у 
Sylvester (1896) rephrased Goldbach's Conjecture so as to read: 
Every even integer 27 greater than 4 is the sum of two primes, one 
larger than 7/2 and the other less than 37/2. Verify this version of 
the conjecture for all even integers between 6 and 76. 


D w 


SECTION 3.3 The Goldbach Conjecture 75 


я 


"d 


11. 


12. 


13. 


14 


15. 


In 1752, Goldbach submitted the following conjecture to Euler: 
Every odd integer can be written in the form p + 2a’, where p is . 
either a prime or 1 and a > 0. Show that the integer 5777 refutes 
this conjecture. 

Prove that Goldbach's Conjecture that every even integer greater 
than 2 is the sum of two primes is equivalent to the statement 
that every integer greater than 5 is the sum of three primes. [Hint: 
If 2n — 2 = p, + p, then 2n = p, + p; + 2and2n t 1 = 
р + Р» + 3.] 
A conjecture of Lagrange (1775) asserts that every odd integer 
greater than 5 can be written as a sum р, + 2p,, where р, p, are 
both primes. Confirm this for all odd integers through 75. 

Given a positive integer n, it can be shown that there exists an even 
integer a which is representable as the sum of two odd primes in 
n different ways. Confirm that the integers 60, 78, and 84 can be 
written as the sum of two primes in six, seven, and eight ways, re- 
spectively. 

(a) For n > 3, show that the integers n, п + 2, п + 4 cannot all 

be prime. 
(b) Three integers p, p + 2, p + 6 which are all prime are called 
a prime-triplet. Find five sets of prime-triplets. 
Establish that the sequence 


(n+ 1)! 2, (n+ 1)!- 3, ...,(п+ D! — (n 1) 


produces n consecutive composite integers for n > 1. 

Find the smallest positive integer n for which the function f(n) = 
т + п + 17 is composite. Do the same for the functions g(») = 
т + 21п + land b(n) = 3n? + Зп + 25. 

The following result was conjectured by Bertrand, but first proved 
by Tchebychef in 1850: For every positive integer п > 1, there exists 
at least one prime р satisfying n < p < 2n. Use Bertrand's Conjec- 
ture to show that p, < 2", where p, is the nth prime. 

Apply the same method of proof as in Theorem 3-6 to show that 
there are infinitely many primes of the form би + 5. 

Find a prime divisor of the integer N = 4(3 - 7 - 11) — 1 of the © 
form 4n + 3. Do the same for N = 4(3.7.11. 15) — 1. 
Another unanswered question is whether there exist an infinite 
number of sets of five consecutive odd integers of which four are 
primes. Find five such sets of integers. 


76 


16. 


17. 


18. 


19. 


20. 


21: 


Primes and Their Distribution CHAPTER 3 


Let the sequence of primes, with 1 adjoined, be denoted by 
Po = 1, p, = 2, р = 3, p, = 5,.. «For each я = 1, it is known 
that there exists a suitable choice of coefficients e, = +1 such that 
21-2 2-1 
Di. ру + E «рь, Pon +a = 2Pin + > «Р, - 
= 0 ъ= 0 


To illustrate: 


ПЕ ПВ 9975 ^ 7; 70:13 and. 
Tad 28.095 cb 7. — AME 27219 


Determine similar representations for the primes 23, 29, 31, and 
217 
In 1848 de Polignac claimed that every odd integer is the sum of a 
prime and a power of 2. For example, 55 = 47 + 2^ = 23 + 25. 
Show that the integers 509 and 877 discredit this claim. 
(a) If p is a prime and p / b, prove that. in the arithmetic pro- 
gression 


aatbat2bat3b... 


every pth term is divisible by p. (Hint: Since gcd(p, b) = 1, 
there exists integers rand s satisfying pr + bs = 1. Put n, = 
kp — asfor k = 1,2,. . . and show that pl (a + m,b).] 
(b) From part (a), conclude that if bis an odd integer, then every 
other term in the indicated progression is even. 
In 1950, it was proven that any integer n > 9 can be written as а 
sum of distinct odd primes. Express the integers 25, 69, 81, and 125 
in this fashion. 
If p and р» + 8 are both prime numbers, prove that 7? + 4 is also 
prime. 
(a) For any integer k > 0, establish that the arithmetic progres- 
sion 
a+ ba+2b,a+3b, ..., 


where gcd(a , b) = 1, contains & consecutive terms which 
are composite. 
(Hint: Put n = (a + b)(a + 2b)---(@ + kb) and consider 
the & terms 
at (n+1)ba+(n+2)b....,at+ (n+ &)b] 
(b) Find five consecutive composite terms in the arithmetic pro- 
gression 


6, 11, 16, 21, 26, 31,36,.... 


SECTION 3.3 The Goldbach Conjecture 7 


22. Show that 13 is the largest prime that can divide two successive 


23. 


24. 


25. 


26. 


27. 


28. 


integers of the form zz + 3. 


(a) The arithmetic mean of the twin primes 5 and 7 is the trian- 
gular number 6. Are there any other twin primes with trian- 
gular mean? 

(b) Thearithmetic mean of the twin primes 3 and 5 is the perfect 
square 4. Are there any other twin primes with a square mean? 

Determine all twin primes p and 4 = p + 2 for which ра — 2 is 

also prime. 

Let p, denote the mh prime. For n > 3, show that 

р» < Р + р, "ose + Pn = 1. 

[Hint: Use induction and Bertrand's Conjecture.] 

Verify the following: 

(a) There exist infinitely many primes ending in 33, such as 233, 
433, 733, 1033, . . . . (Hint: Apply Dirichlet's Theorem.] 

(b) There exist infinitely many primes which do not belong to 
any pair of twin primes. (Hint: Consider the arithmetic pro- 
gression 21k + 5 for k = 1, 2,... 5] 

(c) There exists a prime ending in as many consecutive 1's as de- 
sired. (Hint: To obtain a prime ending in п consecutive 1's, 
consider the arithmetic progression 10"& + А, for k = 1, 
Bidar. ay 

Prove that for every п = 2 there exists a prime р with р < п 

< 2p. (Hint: If n = 2k + 1, then by Bertrand’s Conjecture there 

exists a prime p such that k < р < 2k) 

(a) If n> 1, show that n! is never a perfect square. 

(b) Find the values of п = 1 for which 


т + (n+ 11 (nt 2)! 


is a perfect square. [Hint: Note that n! + (nct + 
(n + 2)! = n(n + 2)*] 


The Theory 
of 
Congruences 


“Gauss once said 
‘Mathematics is 
the queen of the sciences 


and number-theory 


the queen of mathematics.” 
If this be true 


we may add 
that the Disquisitiones is 
the Magna Charta 


of number-tbeory." 


4.1 KARL FRIEDRICH GAUSS 


Another approach to divisibility questions is through the arithmetic of 
remainders, or the theory of congruences as it is now commonly known, 
The concept, and the notation that makes it such a powerful tool, was’ 
first introduced by the German mathematician Karl Friedrich Gauss 
(1777-1855) in his Disquisitiones Aritbmeticae; this monumental work, 
which appeared in 1801 when Gauss was 24 years old, laid the foun- 
dations of modern number theory. Legend has it that a large part of the 
Disquisitiones Aritbmeticae had been submitted as a memoir to the 
French Academy the previous year and had been rejected in a manner 
which, even if the work had been as worthless as the referees believed, 
would have been inexcusable. (Inan attempt to lay this defamatory tale 
to rest, the officers of the Academy made an exhaustive search of their 
permanent records in 1935 and concluded that the Disquisitiones was 
never submitted, much less rejected.) “It is really astonishing," said 
Kronecker, "to think that a single man of such young years was able to 
bring to light such a wealth of results, and above all to present such a 
profound and well-organized treatment of an entirely new discipline." 
Gauss was one of those remarkable infant prodigies whose nat- 
ural aptitude for mathematics soon becomes apparent. As a child of three, 
according to a well-authenticated Story, he corrected an error in his fa- 
ther's payroll calculations. His arithmetical powers so overwhelmed his 
Schoolmasters that, by the time Gauss was 10 years old, they admitted 
that there was nothing more they could teach the boy. It is said that in 
his first arithmetic class Gauss astonished his teacher by instantly solving 
what was intended to be a "busy work" problem: Find the sum of all the 


numbers from 1 to 100. The young Gauss later confessed to having rec- 
ognized the pattern 


1 + 100 = 101,2 + 99 = 101,3 + 98 = 101, -< .,50 + 51 = 101. 


SECTION 4.1 Karl Friedrich Gauss 81 


Since there are 50 pairs of numbers, each of which adds up to 101, the 
, Sum of all the numbers must be 50 . 101 = 5050. This technique pro- 
vides another way of deriving the formula 


_ n(n t 1) 


12-3--.n 5 


for the sum of the first и positive integers. One need only display the 
consecutive integers 1 through z in two rows as follows: 


1 2 Пани df 
fioi T п: Dire niya ay k 


Addition of the vertical columns produces м terms, each of which is equal 
to n + 1; when these terms are added, we get the value n(n + 1). Be- 
cause the same sum is obtained on adding the two rows horizontally, 
what occurs is the formula n(n + 1) = 2(1 + 2 + 3+... n). 

Gauss went on to a succession of triumphs, each new discovery 
following on the heels of a previous one. The problem of constructing 
regular polygons with only “Euclidean tools,” that is to say, with ruler 
and compass alone, had long been laid aside in the belief that the an- 
cients had exhausted all the possible constructions, In 1796, Gauss 
showed that the 17-sided regular polygon is so constructable, the first 
advance in'this area since Euclid’s time. Gauss’ doctoral thesis of 1799 
provided a rigorous proof of the Fundamental Theorem of Algebra, which 
had been stated first by Girard in 1629 and then proved imperfectly by 
d'Alembert (1746) and later by Euler (1749). The theorem (it asserts 
that an algebraic equation of degrec n has exactly m complex roots) was 
always a favorite with Gauss, and he gave, in all, four distinct demon- 
strations of it. The publication of Disquisitiones Arithmeticae in 1801 at 
once placed Gauss in the front rank of mathematicians. 

The most extraordinary achievement of Gauss was more in the 
realm of theoretical astronomy than of mathematics, On the opening 
night of the 19th century, January 1, 1801, the Italian astronomer Piazzi 
discovered the first of the so-called minor planets (planetoids or aster- 
oids), later called Ceres. But after the course of this newly found body, 
visible only by telescope, passed the sun, neither Piazzi nor any other 
astronomer could locate it again. Piazzi’s observations extended over a 
period of 41 days, during which the orbit Swept out an angle of only nine 


82 The Theory of Congruences CHAPTER i 


degrees. From the scanty data available, Gauss was able to calculate Ceres" 
orbit with amazing accuracy and the elusive planet was rediscovered at 
the end of the year in almost exactly the positions he had forecast. This 
success brought Gauss world-wide fame, and led to his appointment as 
director of Géttingen Observatory. | 

By the middle of the 19th century, mathematics had grown into 
an enormous and unwieldy structure, divided into a large number of fields 
in which only the specialist knew his way. Gauss was the last complete! 
mathematician, and it is no exaggeration to say that he was in some degree 


many, Laplace answered, "Why, Pfaff." When the questioner indicated 
that he would have thought Gauss was, Laplace replied, “Pfaff is by far 
the greatest in Germany, but Gauss is the greatest in all Europe.” 
Although Gauss adorned every branch of mathematics, he always 
held number theory in high esteem and affection. He insisted that, 


“Mathematics is the Queen of the Sciences, and the theory of numbers) 
is the Queen of Mathematics.” 


4.2 BASIC PROPERTIES OF CONGRUENCE 


In the first chapter of Disquisitiones Arithmeticae, Gauss introduces the 
concept of congruence and the notation which makes it such a powerful 
technique (he explains that he was induced to adopt the symbol = be- 
cause of the close analogy with algebraic equality). According to Gauss,- 
"If a number я measures the difference between two numbers a and b 
then a and bare said to be congruent with respect to n; if not, incon- 
gruent." Putting this into the form of a definition, we have 


DEFINITION 4-1. Let n be a fixed Positive integer. Two integers 4 Р 
and bare said to be congruent modulo n, symbolized by 
a= b(mod n) 


if n divides the difference a — b; that is, provided that a — b = kn 
for some integer k. 


SECTION 4.2 Basic Properties of Congruence 83 


To fix the idea, consider 7 = 7. It is routine to check that 
3 = 24 (mod 7), — 31 == 11 (mod 7), — 15 = — 64 (mod 7), 


since3 — 24 = ( —3)7, -31 — И = (— 6)7, and —15 — (—64) 
=7.7.1fn X (a — b), then we say that a is incongruent to b modulo 
n and in this case we write а == b (mod n). For example: 25 = 12 
(mod 7), since 7 fails to divide 25 — 12 — 13. 

It is to be noted that any two integers are congruent modulo 1, 
whereas two integers are congruent modulo 2 when they are both even 
or both odd. Inasmuch as congruence modulo 1 is not particularly in- 
teresting, the usual practice is to assume that » > 1. 

Given an integer a, let q and r be its quotient and remainder 
upon division by n, so that 


а= 4п + 7, Osr<n. 


Then, by definition of congruence, a = r (mod n). Since there are n 
choices for 7, we see that every integer is congruent modulo nto exactly 


опе of the values 0, 1, 2,.. ., n — 1; in particular, a= 0 (mod n) if 
and only if n| а. The set of n integers 0, 1,2,. . ., n — 1 is called the 
set of least positive residues modulo п. 

In general, a collection of n integers a, а». . ., а, is said to 


form a complete set of residues (or a complete system of residues) modulo 

n if every integer is congruent modulo я to one and only one of the a,; 

to put it another way, а, @,. . ., 4, are congruent modulo 7 to 0, 1, 2, 
.,m — 1, taken in some order. For instance, 


—12, —4, 11, 13, 22, 82, 91 
constitute a complete set of residues modulo 7; here, we have 
—12222, —4 = 3,11 = 4, 13 = 6, 22 = 1, 82 = 5, 91 =0, 


all modulo 7. An observation of some importance is that any я integers 
form a complete set of residues modulo 7 if and only if no two of the 
integers are congruent modulo я. We shall need this fact later on. 

Our first theorem provides a useful characterization of congru- 
ence modulo я in terms of remainders upon division by n. 


THEOREM 4-1. For arbitrary integers a and b, а= b (mod n) if and 
only if a and b leave the same nonnegative remainder when di- 
vided by n. 


84 The Theory of Congruences CHAPTER 4 


Proof: First, take а = b (mod п), so that a = 6 + kn for some 
integer А. Upon division by n, b leaves a certain remainder r; that 
is, b = qn + rwhere0 < r< n. Therefore, 


a= b kn — (qn * r) + kn = (q+ bnt ғ, 
which indicates that a has the same remainder as b. 


On the other hand, Suppose we can write а = qni + rand 
b = фп + r, with the same remainder r (0 < r < n). Then 


4— b= (qn r) — (qn r) = (4 – qon, 


whence n|a — b. In the language of congruences, this says that 
a= b (mod n). 


Example 4-1 
Since the integers —56 and —11 can be expressed in the form 


756-(—7) 7, —11 = (-2)9 + 7 


‚ With the same remainder 7, Theorem 4-1 tells us that —56 = —11 
(mod 9). Going in the other direction, the congruence —31 == 11 
(mod 7) implies that —31 and 11 have the same remainder when 
divided by 7; this is clear from the relations 


Tél (-75) 4-4, 11-1.7 44. 


Congruence may be viewed as a generalized form of equality, in 
the sense that its behavior with respect to addition and multiplication 
is reminiscent of ordinary equality. Some of the elementary properties 
of equality which Carry over ro congruences appear in the next theorem. 


THEOREM 4-2. Letn>0 be. fixed and a, b, c, d bearbitrary integers. 
Tben tbe following properties bold: 


(1) a2 a (mod п). 

(2) Ifa= b (mod п), then b= a (mod n). 

(3) [а= b (mod n) and b = € (mod п), then a= c (mod n). 

(4) If a= b (mod п) and c = d (mod п), then a + с = 
b + d (mod n) and ас = bd (mod n). 

(5) If a b (mod n), then a + € = b + c (mod x) and 
ac = bc (mod n). 

(6) Ifa= b (mod п), then æ= & (mod n) for any positive in- 
teger k. 5 


SECTION 4.2 Basic Properties of Congruence 85 


Proof: For any integer а, we have a — a = 0 . n, so that a = a 
(mod n). Now if a= b (mod n), then a — b= kn for some integer 
k. Hence, b — a = — (kn) = (—k)n and, since —k is an integer, 
this yields (2). 

Property (3) is slightly less obvious: Suppose that a = b 
(mod n) and b = с (mod n). Then there exist integers P and k 
satisfying a — b = bnand b — c = kn. It follows that 


a—c=(a— B) + (b— 0) = bn kn — (b Dn, 


in consequence of which a = c (mod n). 

In the same vein, if а = b (mod n) and c= d (mod n), 
then we are assured that a — b = k,n and c — d= k,n for some 
choice of k, and &,. Adding these equations, one gets 


(a+ c) — (b+ d) = (a— b) + (c— d) 
= рп + Бп = (k + kn 


ог, as a congruence statement, а + c= b + d (mod n). As regards 
the second assertion of (4), note that 


ас = (b+ kn)(d+ kn) = bd + (bk, + dk, + kikın)n. 


Since bk, + dk, + k,k,n is an integer, this says that ac — bd is 
divisible by n, whence ac = bd (mod п). 

The proof of property (5) is covered by (4) and the fact that 
c= c (mod n). Finally, we obtain (6) by making an induction ar- 
‘gument. The statement certainly holds for k = 1, and we will assume 
it is true for some fixed k. From (4), we know that а = b (mod n) 
and а“ = b* (mod n) together imply that aat  bb* (mod п), or 
equivalently, a**+! = b+ i (mod n). This is the form the statement 
should take for & + 1, so the induction step is complete. 


Before going further, we should illustrate the great help that 
congruences can be in carrying out certain types of computations, 


Example 4-2 
Let us endeavor to show that 41 divides 2? — 1. We begin by noting 
that 25 = —9 (mod 41), whence (25)! = (—9)* (mod 41) by 
Theorem 4-2(6); in other words, 22 = 81 . 81 (mod 41). But 81 
= —1 (mod 41) and so 81 . 81 = 1 (mod 41). Using parts (2) and 
(5) of Theorem 4-2, we finally arrive at 


f 2» — 1 =81 . 81 — 1= 1 — 1 =0 (mod 41). 
Thus 41 |2% — 1, as desired. 


84 The Theory of Congruences CHAPTER 4 


Proof: First, take а = b (mod n), so that a = b + kn for some 
integer &. Upon division by n, b leaves a certain remainder r; that 
is, b = qn + r, where 0 < r< n. Therefore, 


а= bt kn = (qn t r) + ёп = (qt Bn r, 


which indicates that а has the same remainder as b. 


On the other hand, suppose we can write a = qn + rand 
b = qn + r, with the same remainder r (0 = r < n). Then 


a— b= (qnt r) — (qn r) = (q — ап, 


whence п| а — b. In the language of congruences, this says that 
a= b (mod n). 


Example 4-1 
Since the integers —56 and —11 can be expressed in the form 


—56 = (—7)9 +7, —11 = (—2)9 +7 


‚ With the same remainder 7, Theorem 4-1 tells us that —56 = —11 
(mod 9). Going in the other direction, the congruence —31 == 11 
(mod 7) implies that —31 and 11 have the same remainder when 
divided by 7; this is clear from the relations 


SOL ASS) Ana, 1011.74. 


Congruence may be viewed as a generalized form of equality, in 
the sense that its behavior with respect to addition and multiplication 
is reminiscent of ordinary equality. Some of the elementary properties 
of equality which carry over to congruences appear in the next theorem. 


THEOREM 4-2. Let n > 0 be fixed and a, b, c, d be arbitrary integers. 
Then the following properties bold: 


(1) a= a (mod n). 

(2) а= b (mod п), then b= a (mod 7). 

(3) а= b (mod n) and bŒ c (mod n), then a= с (mod n). 

(4) If a= b (mod п) and с = d (mod п), then a + c = 
b + d (mod п) and ac = bd (mod n). 

(5) If a = b (mod n), then a + с=ь + с (mod %) and 
ас = bc (mod n). 

(6) а= Ь (mod n), then æ = i (mod n) for any positive in- 
teger k. 


SECTION 4.2 Basic Properties of Congruence 85 


Proof: For any integer а, we have a — а = 0 - n, so Шаг a = a 
(mod n). Now if a= b (mod п), then a — b= kn for some integer 
k. Hence, b — a = — (kn) = (—k)n and, since — k is an integer, 
this yields (2). 

Property (3) is slightly less obvious: Suppose that а = b 
(mod n) and b = c (mod я). Then there exist integers b and k 
satisfying a — b = bnand b — c = kn. It follows that 


а-с= (а- b) t (b— 0) = bnt kn= (b+ k)n, 


in consequence of which a = c (mod п). 

In the same vein, if a = b (mod n) and с == d (mod n), 
then we are assured that a — b = k,n and c — d= k,n for some 
choice of k, and k,. Adding these equations, one gets 


(a+ c) — (b+ d) = (a— b)+ (c— d) 
= kn + Ып = (k, + k,n 


or, as a congruence statement, а + c= b + d (mod n). As regards 
the second assertion of (4), note that 


ac = (b+ k,n)(d + kn) = bd + (bk, + dk, + kikın)n. 


Since bk, + dk, + k,k,n is an integer, this says that ac — bd is 
divisible by n, whence ac = bd (mod n). 

The proof of property (5) is covered by (4) and the fact that 
c= c (mod n). Finally, we obtain (6) by making an induction ar- 
“gument. The statement certainly holds for k = 1, and we will assume 
it is true for some fixed k. From (4), we know that a= b (mod n) 
and at = i+ (mod n) together imply that aa* = bb* (mod п), or 
equivalently, a*t! == p^*' (mod n). This is the form the statement 
should take for # + 1, so the induction step is complete. 


Before going further, we should illustrate the great help that 
congruences can be in carrying out certain types of computations. 


Example 4-2 
Let us endeavor to show that 41 divides 2? — 1. We begin by noting 
that 25 = —9 (mod 41), whence (25)* = (—9)* (mod 41) by 
Theorem 4-2(6); in other words, 2? == 81 - 81 (mod 41). But 81 
= —1 (mod 41) and so 81 - 81 = 1 (mod 41). Using parts (2) and 
(5) of Theorem 4-2, we finally arrive at 


; 2) — 1=81 - 81 — 1 = 1 — 1 == 0 (mod 41). 
Thus 41 |220 — 1, as desired. 


86 : The Theory of Congruences CHAPTER 4. 


Example 4-3 у 
For another example in the same spirit, suppose that we are asked 
to find the remainder obtained upon dividing the sum 


1! + 2! + 31+ 41+ ... + 99! + 100! 


by 12. Without the aid of congruences this would be an awesome 
calculation. The observation that starts us off is that 4! = 24 = 0 
(mod 12); thus, for = 4, 


И =4!.5.6... #=0.5.6... k= 0 (mod 12). 
One finds in this way that 


2) + ЗГ 414+ ... +100! 
=1! + 21+ 31+ 0+... +0=9 (mod 12). 


Accordingly, the sum in question leaves a remainder of 9 when di- 
vided by 12. 


In the last theorem, it was seen that if a = b (mod n), then ca 
= cb (mod п) for any integer c. The converse, however, fails to hold. | 
For an example perhaps as simple as any, note that 2 - 4 = 20. 1 
(mod 6), while 4 = 1 (mod 6). In brief: one cannot unrestrictedly cancel | 
à common factor in the arithmetic of congruences. я 

With suitable precautions, cancellation can be allowed; onestep | 


in this direction, and an important one, is provided by the following І 
theorem. 4 


THEOREM 4-3. If ca == cb (mod n), then a= b (mod n/d), wbere 
d= gcd(c , п). 


Proof: By hypothesis, we can write 
cla— b) = ca — cb = kn 


for some integer & Knowing that gcd(c , n) = d, there exist rela- 
tively prime integers rand ssatisfying c — dr, n — ds. When these 
values are substituted in the displayed equation and the common 


factor d cancelled, the net result is 
r(a — b) — ks. 


Hence, sl (а — b) and gcd(r, s) = 1. Euclid's Lemma implies that 
s| a — b, which may be recast as a = b (mod s); in other words, 
a= b (mod n/d). 


SECTION 4.2 Basic Properties of Congruence 87 


Theorem 4-3 gets its maximum force when the requirement that 
gcd(c, п) = 1 is added, for then the cancellation may be accomplished 
without a change in modulus. 


CoRoLLARY 1. [f ca= cb (mod n) and gcd(c, п) = 1, then a= b 
(mod n). 


We take the moment to record a special case of Corollary 1 which 
we shall have frequent occasion to use, namely, 


COROLLARY 2. If ca == cb (mod р) and p | c, where p is a prime 
number, then a= b (mod p). 


Proof: The conditions p / c and p a prime imply that gcd(c , p) 
mI. 


Example 4-4 

Consider the congruence 33 == 15 (mod 9) or, if one prefers, 
3.11223. 5 (mod 9). Since gcd(3 , 9) = 3, Theorem 4-3 leads 
to the conclusion that 11 = 5 (mod 3). A further illustration is fur- 
nished by the congruence —35 == 45 (mod 8), which is the same 
255. (—7) 25 - 9 (mod 8). The integers 5 and 8 being relatively 
prime, we may cancel to obtain a correct congruence —7 = 9 
(mod 8). $ 


Let us call attention to the fact that, in Theorem 4-3, it is unnec- 
essary to stipulate that c = 0 (mod n). Indeed, were c= 0 (mod n), 
then рса(с, n) = mand the conclusion of the theorem would state that 
a= b (mod 1); but, as we remarked earlier, this holds trivially for all 
integers a and b. . 

There is another curious situation that can arise with congru- 
ences: the product of two integers, neither of which is congruent to zero, 
may turn out to be congruent to zero. For instance, 4 . 3 = 0 (mod 12), 
but 4 = 0 (mod 12) and 3 = 0 (mod 12). It is a simple matter to show 
that if ab = 0 (mod п) and gcd(a , п) = 1, then b= 0 (mod n); for, : 
Corollary 1 above permits us legitimately to cancel the factor a from both ; 
sides of the congruence ab = a - 0 (mod п). A variation on this is that 
if ab = 0 (mod р), with p a prime, then either a = 0 (mod р) or 
b=0 (mod p). 


10. 


BB The Theory of Congruences CHAPTER 4 
PROBLEMS 4.2 
1. Prove each of the following assertions: 


(a) If a= b (mod п) and m| n, then a= b (mod m). 

(b) If a= b (mod п) and с > 0, then са == cb (mod cn). 

(c) If a= b (mod п) and the integers a, b, n are all divisible by 
d> 0, then a/d = b/d (mod п/а). 


. Give an example to show that a? = b (mod n) need not imply that 


a= b (mod n). 


. If a= b (mod n), prove that gcd(a , п) = gcd(b, n). 


(a) Find the remainders when 2 and 4155 are divided by 7. 
(b) Whatis the remainder when the sum 


15 + 25 + 3 +... +99 + 100° 
is divided by 4? 


. Prove that the integer 53' + 103% is divisible by 39, and that 111° 


+ 333!" is divisible by 7. 


. Form 1, use congruence theory to establish each of the following 


divisibility statements: 

(а) 715" +3. ANA, 
(b) 1313"+2 + 42" +1, 
(с) 27125"+1 + 5n*i 
(d) 4316"+2 + Jans, 


. For n 1, show that 


(— 13)" + 1 == (—13)" + (—13)" - ! (mod 181). 


[Hint: Notice that (—13)? = —13 + 1 (mod 181); use induction 
on n.) 


. Prove the assertions below: 


(a) If ais an odd integer, then а: = 1 (mod 8). 

(b) For any integer a, @ = 0, 1, or 6 (mod 7). 

(c) For any integer а, a = 0 or 1 (mod 5). 

(d) If the integer a is not divisible by 2 or 3, then 2 = 1 
(mod 24). 


- If pis a prime satisfying n < p < 2n, show that 


( 29) =0 (mod p). 


n 
If a, а, . . ., а, is a complete set of residues modulo я and 
gcd(a, п) = 1, prove that aa, аа, . . . , aa, is also a complete 


set of residues modulo и. [Hint: It suffices to show that the numbers 
in question are incongruent modulo и} 7 


SECTION 4.3 Special Divisibility Tests 89 


11. Verify that 0, 1, 2, 22, 23,. . ., 2? form a complete set of residues . 
modulo 11, but 0, 12, 22, 32, . . ., 10? do not. 

12. Prove the following statements: 
(a) If gcd(a, п) = 1, then the integers 


6 cda c-T2ac139/ 7*5, ct (»n—1)a 


form a complete set of residues modulo 7 for any c. 

(b) Any я consecutive integers form a complete set of residues 
modulo z. [Hint: Use part (a).] 

(c) The product of any set of » consecutive integers is divisible 
by n. 

Verify that if а = b (mod n,) and a= b (mod m), then a= b 

(mod я), where the integer n = lcm(z, , m). Hence, whenever n, 

and л, are relatively prime, а = b (mod mm). 

14. Give an example to show that a*= b* (mod n) and k= j (mod n) 

need not imply that а/ = b/ (mod n). 

Establish that if a is an odd integer, then 


а" = 1 (mod 2" +?) 


13. 


15 


for any n = 1. (Hint: Proceed by induction on ».] 
16. Use the theory of congruences to verify that 


89129 —1 and), 97.12% =, 
Prove that if ар = са (mod п) and b= d (mod n), with gcd(b, n) 
= 1, then а == c (mod n). 
18. If a2 b (mod n,) and a = c (mod m), prove that b= c (mod n), 
where the integer n = gcd(n, , m). 


17. 


4.3 SPECIAL DIVISIBILITY TESTS 


One of the more interesting applications of congruence theory involves 
finding special criteria under which a given integer is divisible by an- 
other integer. At their heart, these divisibility tests depend on the no- 
tational system used to assign “names” to integers and, more particularly, 
to the fact that 10 is taken as the base for our number system. Let us ` 
therefore start by showing that, given an integer b > 1, any positive in- 
teger N can be written uniquely in terms of powers of b as 


N= apb" + an- "+... tabt abt a, 


90 The Theory of Congruences CHAPTER 4 / 


where the coefficients a, can take on the b different values 0, 1, 2, 
. » +», 5 1. For, the Division Algorithm yields integers q, and а, sat- 
isfying 

М = qb + а, 0s4,<6 
If q, = b, we can divide once more, obtaining 

474bta, 035a, « b. 
Now substitute for q, in the earlier equation to get 

N= (46+ a)b + а = qb + abt a. 


As long as 4; = b, we can continue in the same fashion. Going one more 
step: q; = qb + a, where 0 = a, < b, hence 


N qb + ab + abt a. 


Since N> а, > q > -+ 2 0 is a strictly decreasing sequence of inte- 
gers; this process must eventually terminate; say, at the (m — 1)th stage, 
where 


Gu Fg OFA), Sy OS an- <b 
and 0 = q,, < b. Setting Am = qm, we reach the representation 
ури ав а, 


which was our aim. 
To show uniqueness, let us suppose that N has two distinct rep- 
resentations; say, 


N= a,b" +... + ab+ a= с," + «+» + сБ + с, 


with 0 = a, < b for each jand 0 = с, < b for each j (we can use the 
same m by simply adding terms with coefficients a, = 0 or с, = 0 if nec- 
essary). Subtracting the second representation from the first gives the 
equation 


07 а" +... + dib а, 


where d, — a,— c,for i= 0,1,. . ., m. Because the two representations 
for N are assumed different, we must have d, + 0 for some value of i. 
Take kto be the smallest subscript for which d, # 0. Then 


0-—d,b" +... + dys, ++ db 


SECTION 43 Special Divisibility Tests 91 


and so, after dividing by №, 
d, = —b(d,b"-*- t ++. + dus). 


This tells us that b| d,. Now the inequalities 0 = а, < band 0 = c, 
< blead to — b € a, — c, < b, or| d,| < b. The only way of reconciling 
the conditions b| d, and| а, | < bis to have d, = 0, which is impossible. 
From this contradiction, we conclude that the representation of N is 
unique. 

The essential feature in all of this is that the integer N is com- 
pletely determined by the ordered array am am- . . +» 4 4 of coef- 
ficients, with the powers of b and plus signs being superfluous. Thus, 
the number 


N= а," + an- 71+... + об + арт a 
may be replaced by the simpler symbol 
N= (а,а„ - 1 *** 24), 


(the right-hand side is not to be interpreted as a product, but only as an 
abbreviation for №. We call this the base b place value notation for М. 

Small values of b give rise to lengthy representation of numbers, 
but have the advantage of requiring fewer choices for coefficients. The 
simplest case occurs when the base b = 2, and the resulting system of 
enumeration is called the binary number system (from the Latin bin- 
arius, two). The fact that when a number is written in the binary system 
only the integers 0 and 1 can appear as coefficients means: every positive 
integer is expressible in exactly one way as a sum of distinct powers of 
2. For example, the integer 105 can be written as 


105 =1.25+1. 2+0. 2+1.2+0.2+0.2+1 
не 26401 25671 
ог, in abbreviated form, 
105 = (1101001),. 
In the other direction, (1001111), translates into i 
1:254-0.2' 0:21 1-2X3- ds 28 cb 142 T1 79, 


The binary system is most convenient for use in modern electronic com- 
puting machines, since binary numbers are represented by strings of 
zeros and ones; 0 and 1 can be expressed in the machine by a switch (or 
a similar electronic device) being either on or off. 


92 The Theory of Congruences CHAPTER 4 


We ordinarily record numbers in the decimal system of notation, 
where b = 10, omitting the 10-subscript which specifies the base. For 
instance, the symbol 1492 stands for the more awkward expression 


1.10 + 4. 102+ 9. 10 + 2. 


The integers 1, 4, 9, and 2 are called the digits of the given number, 1 
being the thousands digit, 4 the hundreds digit, 9 the tens digit, and 2 
the units digit. In technical language we refer to the representation of 
the positive integers as sums of powers of 10, with coefficients at most 
9, as their decimal representation (from the Latin decem, ten). 

We are about ready to derive criteria for determining whether an 
integer is divisible by 9 or 11, without performing the actual division. 
For this, we need a result having to do with congruences involving 
polynomials with integral coefficients. 


THEOREM 4-4, Let Р(х) = Ў" , c,x* be a polynomial function of 


x with integral coefficients с, If a? b (mod п), then P(a) = P(b) 
(mod n). 


Proof: Since a= b (mod n), part (6) of Theorem 4-2 can be applied 
to give a* = b* (mod n) for k = 0,1,. . ., m. Therefore 


Ca = с, (mod п) 


for all such k. Adding these т + 1 congruences, we conclude that 


Ў сач У, o (mod n) 


= 0 а= 0 


or, in different notation, Р(а) = P(b) (mod n). 


If P(x) is a polynomial with integral coefficients, one Says that 
а is a solution of the congruence Р(х) = 0 (mod п) if Ра) = 0 
(mod п). 


COROLLARY. If a is a solution of P(x) = 0 (mod n) and a = b 
(mod я), then b is also a solution. 


Proof. From the last theorem, it is known that Р(а) = P(b) 
(mod n). Hence, if a is a solution of P(x) = 0 (mod я), then 
P(b) = Р(а) =0 (mod x), making ba solution. 


“SECTION 4.3 Special Divisibility Tests 93 


One divisibility test that we have in mind is this: A positive in- 
teger is divisible by 9 if and only if the sum of the digits in its decimal 
representation is divisible by 9. 


THEOREM 4-5. Let = 4,10" + 4,-,1077 +... + 4,10 + 2, 
be the decimal expansion of the positive integer N, 0 = a, < 10, 
and let S = a, + a, + --- + а. Then9|N if and only if9| S. 


Proof: Consider P(x) = Ў)" аьлх*, а polynomial with integral 


ъ= 0 
coefficients. The key observation is that 10 = 1 (mod 9), whence 
by Theorem 4-4, Р(10) = Р(1) (mod 9). But P(10) = N and 
PQ) = @ + a, +--+ + a, = S, so that N= S (mod 9). It follows 
that N= 0 (mod 9) if and only if S= 0 (mod 9), which is what we 
wanted to prove. 


Theorem 4-4 also serves as the basis for a well-known test for 
divisibility by 11; to wit, an integer is divisible by 11 if and only if the 
alternating sum of its digits is divisible by 11. Stated more precisely: 


THEOREM 4-6. Let N = Am 10" + a,-,1077 + ++» + 2,10 + a 
be the decimal representation of the positive integer N, 0 = а, 
< 10, and let T= a@ — a, + àj— + C7 "a, Then 11| N if 
and only if111 T. 


Proof As in the proof of Theorem 4-5, put P(x) 
= Ў. „аю. Since 10 = —1 (mod 11), we get Р(10) = Р(—1) 


r= 

(mod 11). But P(10) = N, whereas P(—1) = @ — а + a~: 
+ (—1)"4, = T, so that N= T (mod 11). The implication is that 
both Nand Tare divisible by 11 or neither is divisible by 11. 


Example 4-5 
To see an illustration of the last two results, take the integer 
М = 1,571,724. Since the sum 


1+5+7+1+7+2+4 = 27 


is divisible by 9, Theorem 4-5 guarantees that 9 divides №. It сап 
also be divided by 11; for, the alternating sum 


te A oy Wea lets wi Atte Yen ae ны © 
is divisible by 11. 


94 


The Theory of Congruences CHAPTER 4 


PROBLEMS 4.3 


1. 


» 


n 


a 


5 


S 


я 


Prove the following statements: 
(a) For any integer a, the units digit of а? is 0, 1, 4, 5, 6, or 9. 
(b) Any one of the integers 0, 1, 2, 3, 4, 5, 6, 7, 8, 9 can occur as 
the units digit of æ. 
(c) For any integer a, the units digit of а is 0, 1, 5, or 6. 
(d) The units digit of a triangular number is 0, 1, 3, 5, 6, or 8. 
Find the last two digits of the number 9”. (Hint: 9? = 9 (mod 10), 
hence 9” = 9+ 1%; now use the fact that 9% = 1 (mod 100).] 
Without performing the divisions, determine whether the integers 
176,521,221 and 149,235,678 are divisible by 9 or 11. 
(a) Obtain the following generalization of Theorem 4-5: If the 
integer N is represented in the base b by 


N= a,b" ++ +abtabta0sasb-1 


then b — 1| Nif and only if b — 11 (a, + --- + a, +a, 
+ а). 

(b) Give criteria for the divisibility of N by 3 and 8 which depend 
on the digits of N when written in the base 9, 

(c) Is the integer (447836), divisible by 3 and 8? 

Working modulo 9 or 11, find the missing digits in the calculations 
below: 

(a) 51840 . 273581 = 14182432040; 

(b) 2399561 = [3(523 + р; 

(с) 2784x = х. 493; 

(d) 512.1553125 = 1000000000. 

Establish the following divisibility criteria: 

(a) buic is divisible by 2 if and only if its units digit is 0, 2, 
4, 6, or 8. 

(b) An integer is divisible by 3 if and only if the sum of its digits 
is divisible by 3. 

(c) An integer is divisible by 4 if and only if the number formed 
by its tens and units digits is divisible by 4. [Hint: 10* = 0 
(mod 4) for k = 2.] 

(d) An integer is divisible by 5 if and only if its units digit is 0 or 
5. 

For any integer a, show that @ — а + 7 ends in one of the digits 
3, 7, or 9. 

Find the remainder when 4444**** is divided by 9. [Hint: Observe 
that 2° = — 1 (mod 9).] 5 


SECTION 4.3 Special Divisibility Tests 95 


14, 


15. 


16. 


17. 


18. 


19. 


20. 


Prove that no integer whose digits add up to 15 can be a square ог 
a cube. [Hint: For any а, d? = 0, 1, or 8 (mod 9).] 
Assuming that 495 divides 27324935, obtain the digits x and y. 


. Determine the last three digits of the number 7””. 


[Hint: 7%" = (1 + 400)" =1 + 400” (mod 1000).] 

If t, denotes the nth triangular number, show that /, + u = f, 
(mod k); hence, t, and /, + » must have the same last digit. 
For any и > 1, prove that there exists a prime with at least 7 of its 
digits equal to 0. [Hint: Consider the arithmetic progression 
10"*'k+ 1fok-12,...] 

Find the values of n > 1 for which 1! + 2! + 3! + --- + nisa 
perfect square. (Hint: Problem 1(а).] 
Show that 2" divides an integer Nif and only if 2" divides the number 
made up of the last л digits of N. (Hint: 10* = 255^ = 0 (mod 2") 
for k= п.) ‹ 

Let N = 4,10" + ... + а, 10 + 4,10 + а, where 0 = а, = 9, 
be the decimal expansion of a positive integer №. 

(a) Prove that 7, 11, and 13 all divide N if and only if 7, 11, and 

13 divide the integer 


M = (1004, + 10а, + a) — (1004 + 10a, +a) 
+ (100a, + 104, + a) =. 


(Hint: If п is even, then 10?" = 1, 10» + 1 == 10, 10" + 
= 100 (mod 1001); if n is odd, then 10°" = — 1, 10^ +! 
== —10, 10"+? = —100 (mod 1001).] 

(b) Prove that 6 divides N if and only if 6 divides the integer 

м=а+4а táa + +++ + ham 
Without performing the divisions, determine whether the integer 

1,010,908,899 is divisible by 7, 11, and 13. 

(a) Given an integer N, let M be the integer formed by reversing 
the order of the digits of М (for example, if N = 6923, then 
М = 3296). Verify that N — Mis divisible by 9. 

(b) A palindrome is a number that reads the same backwards as 
forwards (for instance, 373 and 521125 are palindromes). 
Prove that any palindrome with an even number of digits is 
divisible by 11. 

Given a repunit R„, show that 

(a) 9| к, if and only if | n. 

(b) 11| К, if and only if л is even. 

Factor the repunit R, = 111111 into a product of primes. [Hint: 

Problem 16.] ў 


96 Г The Theory of Congruences CHAPTER 4 


21. Explain why the following curious calculations hold: 
1-9+ 2=11 
12-9+ 3=111 
12349 F4 == 11111 
1234 -9 + 5 = 11111 
12345 . 9 + 6 = 111111 
123456 . 9 + 7 = 1111111 
1234567 -9 + 8 = 11111111 
12345678. 9 + 9 = 111111111 
123456789 . 9 + 10 = 1111111111 


[Hint: Show that 


(10"7! 2. 10"-2 + 3. 10"- 3 + ...- н) (10 — 1) 
+ (п +1) = (10*1— 19] 


22. Anoldand somewhat illegible invoice shows that 72 canned hams 
were purchased for $х67.9у. Find the missing digits. 

23. If 792 divides the integer 13x)452, find the digits x, y, and 2. [Hint: 
By Problem 15, 81452.) 


4.4 LINEAR CONGRUENCIES 


This is a convenient place in our development at which to investigate 
the theory of linear congruences: An equation of the form ах== b (mod 
n) is called a linear congruence, and by a solution of such an equation 
we mean an integer x, for which ax, == b (mod n). By definition, ax, 
= b (mod n) if and only if п| аж — b or, what amounts to the same 
thing, if and only if ax, — b = ny, for some integer w. Thus, the problem 
of finding all integers satisfying the linear congruence ax == b (mod n) 
is identical with that of obtaining all solutions of the linear Diophantine 
equation ax — пу = b. This allows us to bring the results of Chapter 2 
into play. 

It is convenient to treat two solutions of ax= b (mod n) which 
are congruent modulo mas being “equal” even though they are not equal 
in the usual sense. For instance, х = 3 and x = —9 both satisfy the con- 
gruence 3x= 9 (mod 12); since 3 = —9 (mod 12), they are not counted 
as different solutions. In short: When we refer to the number of solutions 
of ax == b (mod n), we mean the number of incongruent integers sat- 
isfying this congruence. 


eee 


SECTION 4.4 Linear Congruences 


97 


With these remarks in mind, the principal result is easy to state. 


THEOREM 4-7. The linear congruence ах = b (mod п) bas а so- 
lution if and only if d| b, where d= gcd(a, n). If d| b, then it bas 
d mutually incongruent solutions modulo n. Е 


Proof: We have already observed that the given congruence is 
equivalent to the linear Diophantine equation ax — ny = b. From 
Theorem 2-9, it is known that the latter equation can be solved if 
and only if d| b; moreover, if it is solvable and xp, y is one specific 
solution, then any other solution has the form 


n a 
х= + а 


for some choice of t. 

Among the various integers satisfying the first of these for- 
mulas, consider those which occur when ttakes on the successive 
values £—0,1,2,...,d — 1: 


n 2n (d— )n 
+ Mt es aE IS 
Hoy Xo Fs Mo Та ж + a 


We claim that these integers are incongruent modulo n, while all 
other such integers x are congruent to some one of them. If it hap- 
pened that 


n n 
фр х + 
X j^ EA 2° (mod n), 


where 0 = & < h= d — 1, then one would have 


n 


FOGLE 
ай = 45 (mod n). 


Now gcd(n/d , п) = n/d and so, by Theorem 4-5, the factor n/d 
could be cancelled to arrive at the congruence 
1, = t; (mod d). 


which is to say that d| £, — 4. But this is impossible, in view of the 
inequality 0 < h — А < d. 


98 The Theory of Congruences CHAPTER 4 


It remains to argue that any other solution x, + (7/d)t is 
congruent modulo 7 to one of the d integers listed above. The Di- 
vision Algorithm permits us to write tas t= gd + r, where 0 = r 
= d-— 1. Hence 


n n 
t= + (qd + 
A X 2 (94 r) 
+x +ngt+ =r 
n 
=% + — rod n), 


with x, + (n/d)rbeing one of our d selected solutions. This ends 
the proof. 


The argument that we gave in Theorem 4-7 brings out a point 
worth stating explicitly: If x, is any solution of ах = b (mod n), then 
the d = gcd(a, п) incongruent solutions are given by 


Xy X + n/d, x, + 2(n/d), .. .,% + (d — 1) (n/d). 


For the reader's convenience, let us also record the form 


Theorem 4-7 takes in the special case in which a and z are assumed to 
be relatively prime. 


COROLLARY. /fgcd(a, п) = 1, then the linear congruence ax == b 
(mod л) bas а unique solution modulo n. 


We now pause to look at two concrete examples. 


Example 4-6 
Consider the linear congruence 18x = 30 (mod 42). Since 
gcd(18 , 42) = 6 and 6 surely divides 30, Theorem 4-7 guarantees 
the existence of exactly six solutions, which are incongruent 
modulo 42. By inspection, one solution is found to be x — 4. Our 
analysis tells us that the six solutions are as follows: 
x= 4 + (42/6) t 4 + 7t (mod 42), ег... 5 


or, plainly enumerated, 


x= 4, 11, 18, 25, 32, 39 (mod 42). 


1 
ў 


SECTION 4.4 Linear Congruences 99 


Example 4-7 
Let us solve the linear congruence 9х== 21 (mod 30). At the outset, 
since рса(9 , 30) = 3 and 3121, we know that there must be three 
incongruent solutions. 

One way to find these solutions is to divide the given con- 
gruence through by 3, thereby replacing it by the equivalent con- 
gruence 3x = 7 (mod 10). The relative primeness of 3 and 10 
implies that the latter congruence admits a unique solution modulo 
10. Although it is not the most efficient method, we could test the 
integers 0, 1, 2, . . ., 9 in turn until the solution is obtained. A 
better way is this: multiply both sides of the congruence 3x = 7 
(mod 10) by 7 to get 


21x = 49 (mod 10), 


which reduces to x = 9 (mod 10). (This simplification is no ac- 
cident, for the multiples 0 · 3,1 - 3,2 · 3,.. .,9:3 form а com- 
plete set of residues modulo 10; hence, one of them is necessarily 
congruent to 1 modulo 10.) But the original congruence was given 
modulo 30, so that its incongruent solutions are sought among the 
integers 0, 1, 2, . . ., 29. Taking t = 0, 1, 2, in the formula 


х= 9-10! 
one gets 9, 19, 29, whence 
x= 9 (mod 30), x= 19 (mod 30), x= 29 (mod 30) 


are the required three solutions of 9x — 21 (mod 30). 

A different approach to the problem would be to use the 
method that is suggested in the proof of Theorem 4-7. Since the 
congruence 9x == 21 (mod 30) is equivalent to the linear Dio- 
phantine equation 


9x — 30y — 21, 


we begin by expressing 3 = gcd (9, 30) as а linear combination of 9 and 
30. It is found, either by inspection or by the Euclidean Algorithm, that 
3 = 9(—3) + 30 - 1, so that 


2127.3 = 9(—21) = 300—7). 


100 The Theory of Congruences CHAPTER 4 


Thus, x = —21, y = —7 satisfy the Diophantine equation and, in con- 
sequence, all solutions of the congruence in question are to be found 
from the formula 


"ka x= = + Žr = =21 +10 


The integers x = —21 + 10ż, where t= 0, 1, 2 are incongruent modulo 
30 (but all are congruent modulo 10); thus, we end up with the incon- 
gruent solutions 


x= —21 (mod 30), x= —11 (mod 30), x= —1 (mod 30) 


or, if one prefers positive numbers, x= 9, 19, 29 (mod 30). 


Having considered a single linear congruence, it is natural to 
turn to the problem of solving a system 


ах = b, (mod m), ах — b, (mod mj), . . ., a,x = b, (mod m,) 


of simultaneous linear congruences. We shall assume that the moduli 
m, are relatively prime in pairs. Evidently, the system will admit no so- 
lution unless each individual congruence is solvable; that is, unless 
d,| b, for each k, where d, = gcd(a, , ть). When these conditions are 
satisfied, the factor d, can be cancelled in the Ath congruence to produce 
а new system (having the same set of solutions as the original one), 


a,x= b, (mod n), ax == b, (mod n), .. ., dx= b, (mod n,), 


where n, = m,/d,and gcd(a, n) = 1 for i + j; also, gcd(a, , п) = 1. 
The solutions of the individual congruences assume the form 


ХЕ c (mod n,), x= c (mod m), . . ., x= c, (mod n). 


Thus, the problem is reduced to one of finding a simultaneous solution 
of a system of congruences of this simpler type. 

The kind of problem that can be solved by simultaneous con- 
gruences has a long history, appearing in the Chinese literature as early 
as the first century A.D. Sun-Tsu asked: Find a number which leaves the 
remainders 2, 3, 2 when divided by 3, 5, 7, respectively. (Such mathe- 
matical puzzles are by no means confined to a single cultural sphere; 
indeed, the same problem occurs in the Introductio Aritbmeticae of the 
Greek mathematician Nicomachus, circa 100 a.p.) In honor of their early 


contributions, the rule for obtaining a solution usually goes by the name 
of the Chinese Remainder Theorem 


SECTION 4.4 Linear Congruences 101 


THEOREM 4-8 (Chinese Remainder Theorem). Let m, 5, . . +» nr 
be positive integers sucb tbat gcd(m,, п) = 1 fori + j. Then the 
system of linear congruences 


x= a, (mod nj), 
x = a, (mod m), 


x = a, (mod n,) 


bas a simultaneous solution, which is unique modulo the integer 
пт. п. 


Proof: We start by forming the product n = nn, ++ n,. For each 
k-1,2,...,rlet 


М, = n/n, = Mh +++ ny aea ot Pj 


in other words, №, is the product of all the integers 7, with the factor 
n, omitted. By hypothesis, the 7, are relatively prime in pairs, so 
that gcd(N, , 7) = 1. According to the theory of a single linear 
congruence, it is therefore possible to solve the congruence №х 
= 1 (mod n,); call the unique solution x, Our aim is to prove that 
the integer 


X= a,N,x, + aNx t: + а, Мл, 


is a simultaneous solution of the given system. 
First, it is to be observed that N, = 0 (mod n,) for i # k, 
since и, | N, in this case. The result is that 


Z= а№х + -.. + ах, = a Nux, (mod n). 


But the integer x, was chosen to satisfy the congruence N,x = 1 
(mod 7), which forces 


X= a, - 1 = a, (mod n). 


This shows that a solution to the given system of congruences exists. 
As for the uniqueness assertion, suppose that x’ is any other 
integer which satisfies these congruences. Then 


X= а, = х (mod m), ee TD ate 


102 The Theory of Congruences CHAPTER 4 


and so »,| X — x’ for each value of k. Because gcd(z,, n) = 1, 
Corollary 2 to Theorem 2-5 supplies us with the crucial point that 
nn, +++ n,| X — x'; hence X= x' (mod n). With this, the Chinese 
Remainder Theorem is proven. 


Example 4-8 
The problem posed by Sun-Tsu corresponds to the system of three 
congruences 


x72 (mod 3), 
x= 3 (mod 5), 
х== 2 (mod 7). 


In the notation of Theorem 4-8, we have n = 3 - 5 - 7 = 105 and 
№ = п/3 = 35, N, = n/5 = 21, № = n/7 = 15. 
Now the linear congruences 
35x= 1 (mod 3), 21x == 1 (mod 5), 15х==1 (mod 7) 


are satisfied by x, — 2, x, — 1, x, — 1, respectively. Thus, a solution 
' of the system is given by 


#=2.235.2+3.21.1+2.15.1= 233. 
Modulo 105, we get the unique solution x = 233 = 23 (mod 105). 
Example 4-9 
For a second illustration, let us solve the linear congruence 
17x = 9 (mod 276). 


Since 276 = 3 . 4 . 23, this is equivalent to finding a solution of 
the system of congruences ` 


17x = 9 (mod 3) or x= 0 (mod 3) 
17x = 9 (mod 4) x= 1 (mod 4) 
17x = 9 (mod 23) 17x = 9 (mod 23). 


Note that if x= 0 (mod 3), then x = 3k for any integer k. We sub- 
stitute into the second congruence of the sytsem and obtain 


3k= 1 (mod 4). 


SECTION 4.4 Linear Congruences —— : 103 


Multiplication of both sides of this congruence by 3 gives us 
k=9k=3 (mod 4), 
so that k = 3 + 4j, where jis an integer. Then 
x = 3(3 +4) = 9 + 12). 
For x to satisfy the last congruence, we must have 
17(9 + 120) =9 (mod 23) 


or 204j= — 144 (mod 23), which reduces to 3j= 6 (mod 23); that 
is, j= 2 (mod 23). This yields j = 2 + 234 tan integer, whence 


x = 9 + 12(2 + 239 = 33 + 2761. 


All in all, x = 33 (mod 276) provides a solution to the system of 
congruences and, in turn, а solution to 17x = 9 (mod 276). 


PROBLEMS 4.4 


1. Solve the following linear congruences: 

(a) 25х== 15 (mod 29). 

(b) 5x22 (mod 26). 

(c) 6x= 15 (mod 21). 

.(d) 36x= 8 (mod 102). 

(e) 34х == 60 (mod 98). 

(f) 140х == 133 (mod 301). [Hint: gcd(140 , 301) = 7.] 

2. Using congruences, solve the Diophantine equations below: 

(а) 4х + 51y = 9. [Hint: 4х==9 (mod 51) gives x = 15 + 51% 
while 51y = 9 (mod 4) gives у = 3 + 45. Find the relation 
between sand ¢] 

(b) 12x + 25у = 331. 

(c) 5x — $3y 17: 

3. Findallsolutions of the linear congruence 3x — 7у==11 (mod 13). 
4. Solve each of the following sets of simultaneous congruences: 

(а) x= 1 (mod 3), x= 2 (mod 5), x= 3 (mod 7) 

(b) x= 5 (mod 11), x= 14 (mod 29), x= 15 (mod 31) 

(c) х=5 (mod 6), x= 4 (mod 11), x= 3 (mod 17) 

(d) 2x= 1 (mod 5), 3x=9 (mod 6), 4x= 1 (mod 7), 5x =9 
(mod 11) 


104 


ха 


с 
Б 


9 


10. 


11. 


12. 


The Theory of Congruences CHAPTER 4 


Solve the linear congruence 17x= 3 (mod 2 - 3 - 5 - 7) by solving 
the system 


17x = 3 (mod 2), 17x = 3 (mod 3), 17x= 3 (mod 5), 
17x = 3 (mod 7). 


Find the smallest integer a > 2 such that 
212, 312+ 1, 4|а+ 2, 5|а+ 3,6la 4. 


(a) Obtain three consecutive ihtegers each having a square factor. 
[Hint: Find an integer а such that 22 | a, 3^ | a + 1, 
Flat 2] 

(b) Obtain three consecutive integers, the first of which is divis- 
ible by a square, the second bya cube, and the third by a fourth 
power. 

(Brahmagupta, 7th century A.D.) When eggs in a basket are re- 
moved 2, 3, 4, 5, бага time there remain, respectively, 1, 2, 3, 4, 5 
eggs. When they are taken out 7 at a time, none are left over. Find 
the smallest number of eggs that could have been contained in the 
basket. 

The basket-of-eggs problem is often phrased in the following form: 
One egg remains when the eggs are removed from the basket 2, 3, 
4, 5, or 6 at a time; but, no eggs remain if they are removed 7 ага 
time. Find the smallest number of eggs that could have been in the 
basket. 

(Ancient Chinese Problem.) A band of 17 pirates stole a sack of 
gold coins. When they tried to divide the fortune into equal por- 
tions, 3 coins remained. In the ensuing brawl over who should get 
the extra coins, one pirate was killed. The wealth was redistributed, 
but this time an equal division left 10 coins. Again an argument 
developed in which another pirate was killed. But now the total 
fortune was evenly distributed among the survivors. What was the 
least number of coins that could have been stolen? 

Prove that the congruences 


x= а (mod п) and x= b (mod m) 


admit a simultaneous solution if and only if ged(n, m) | a — b; if 
а solution exists, confirm that it is unique modulo Icm(z , m). 
Use Problem 11 to show that the system 

х==5 (mod 6) and x 7 (mod 15) 
does not possess a solution, 


\ 
SECTION 4.4 Linear Congruences 


13. 


14. 


15. 


16. 


17. 


18. 


105 


-If x = а (mod n), prove that either x = a (mod 2n) ог x = 


а + п (mod 2n). 
A certain integer between 1 and 1200 leaves the remainders 1, 2, 6 
when divided by 9, 11, 13 respectively. What is the integer? 
(a) Findan integer having the remainders 1, 2,5,5 when divided 
by 2, 3, 6, 12, respectively. (Yih-hing, died 717.) 
(b) Findan integer having the remainders 2, 3, 4, 5 when divided 
by 3, 4, 5, 6, respectively. (Bhaskara, born 1114.) 
(c) Findan integer having theremainders 3, 11, 15 when divided 
by 10, 13, 17, respectively. (Regiomontanus, 1436-1473.) 
Let г, denote the nth triangular number. For which values of n does 
t, divide t,2 + t? + «+» + t? (Hinr; Since офи... tae = 
1,037 + 127? + 13n + 2)/30, it suffices to determine those ? sat- 
isfying 3? + 12n? + 13n + 2=0 (mod 2 - 3+ 5).] 
Find the solutions of the system of congruences 
Зх + 4у== 5 ( mod 13) 
2х + 5y =7 (mod 13). 
Obtain the two incongruent solutions modulo 210 of the system 
2х= 3 (mod 5) 
4x = 2 (mod 6) 
3x = 2 (mod 7). 


. . 


Fermat’s 
Theorem 


“And perhaps 
posterity will thank me 


for having shown it 
that the ancients 
did not know everything.” 


Р. FERMAT 


5.1 PIERRE DE FERMAT 


What the ancient world had known was largely forgotten during the in- 
tellectual torpor of the Dark Ages, and it was only after the twelfth cen- 
tury that Western Europe again became conscious of mathematics. The 
revival of classical scholarship was stimulated by Latin translations from 
the Greek and, more especially, from the Arabic. The Latinization of 
Arabic versions of Euclid's great treatise, the Elements, first appeared in 
1120. The translation was not a faithful rendering of the Elements, having 
suffered successive, inaccurate translations from the Greek—first into 
Arabic, then into Castilian, and finally into Latin—done by copyists not 
versed in the content of the work. Nevertheless this much-used copy, 
with its accumulation of errors, served as the foundation of all editions 
known in Europe until 1505, when the Greek text was recovered. ` 
With the fall of Constantinople to the Turks in 1453, the Byzan- 
tine scholars who had served as the major custodians of mathematics 
brought the ancient masterpieces of Greek learning to the West. It is 
reported that a copy of what survived of Diophantus' Arithmetica was 
found in the Vatican library around 1462 by Johannes Müller (better 
known а5 Regiomontanus from the Latin name of his native town, Kón- 
igsberg). Presumably, it had been brought to Rome by the refugees from 
Byzantium. Regiomontanus observed that “In these books the very flower 
of the whole of arithmetic lies hid," and tried to interest others in trans- 
lating it. Notwithstanding the attention-that was called to the work, it 
remained practically a closed book until 1572 when the first translation 
and printed edition was brought out by the German professor Wilhelm 
Holzmann, who wrote under the Grecian form of his name, Xylander. 
The Aritbmetica became fully accessible to European mathematicians 
when Claude Bachet—borrowing liberally from Xylander—published 
(1621) the original Greek text, along with a Latin translation containing 
notes and comments. The Bachet edition probably has the distinction 


of being the work that first directed the attention of Fermat to the prob- 
lems of number theory. 


а © 


108 


SECTION 5.1 Pierre de Fermat 109 


Few if any periods were so fruitful for mathematics as the 17th 
century; Northern Europe alone produced as many men of outstanding 
ability as had appeared during the preceding millennium. At a time when 
such names as Desargues, Descartes, Pascal, Wallis, Bernoulli, Leibniz, 
and Newton were becoming famous, a certain French civil servant, Pierre 
de Fermat (1601-1665), stood as an equal among these brilliant scholars. 
Fermat, the "Prince of Amateurs," was the last great mathematician to 
pursue the subject as a sideline to a nonscientific career. By profession 
a lawyer and magistrate attached to the provincial parliament at Tou- 
louse, he sought refuge from controversy in the abstraction of mathe: 
matics, Fermat evidently had no particular mathematical training and he 
evidenced no interest in its study until he was past 30; to him, it was 
merely a hobby to be cultivated in leisure time. Yet no practitioner of 
his day made greater discoveries or contributed more to the advance- 
ment of the discipline: one of the inventors of analytic geometry (the 
actual term was coined in the early 19th century), he laid the technical 
foundations of differential and integral calculus, and with Pascal estab- 
lished the conceptual guidelines of the theory of probability. Fermat's 
real love in mathematics was undoubtedly number theory, which he res- 
cued from the realm of superstition and occultism where it had long 
been imprisoned. His contributions here overshadow all else; it may well 
be said that the revival of interest in the abstract side of number theory 
began with Fermat, 

Fermat preferred the pleasure which he derived from mathe- 
matical research itself to any reputation that it might bring him; indeed, 
he published only one major manuscript during his lifetime and that just 
five years before his death using the concealing initials M.P.E.A.S. Ada- 
mantly refusing to put his work in finished form, he thwarted several 
efforts by others to make the results available in print under his name. 
In partial compensation for his lack of interest in publication, Fermat 
carried on a voluminous correspondence with contemporary mathe- 
maticians. Most of what little we know about his investigations is found 
in the letters to friends with whom he exchanged problems and to whom 
he reported his successes. They did their best to publicize Fermat's tal- 
ents by passing these letters from hand to hand or by making copies, 
which were dispatched over the Continent. 

As his parliamentary duties demanded an ever greater portion 
of his time, Fermat was given to inserting notes in the margin of what- 
ever book he happened to be using. Fermat's personal copy of the Bachet 
edition of Diophantus held in its margin many of his famous theorems 


110 Fermat's Theorem CHAPTER5 | 


in number theory. These were discovered five years after Fermat's death 
by his son Samuel, who brought out a new edition of the Arithmetica | 
incorporating his father’s celebrated marginalia. Since there was little 
space available, Fermat's habit had been to jot down some result and 
omit all steps leading to the conclusion. Posterity has wished many times 
that the margins of the Arithmetica had been wider or that Fermat had 
been a little less secretive about his methods. 


5.2 FERMAT’S FACTORIZATION METHOD 


In a fragment of a letter, written in all probability to Father Marin Mer- 
senne in 1643, Fermat described a technique of his for factoring large - 
numbers. This represented the first real improvement over the classical ^ 
method of attempting to find a factor of n by dividing by all primes not 
exceeding yn. Fermat's factorization scheme has at its heart the obser- 
vation that the search for factors of an odd integer л (since powers of 2 
are easily recognizable and may be removed at the outset, there is no 
loss in assuming that я is odd) is equivalent to obtaining integral so: 
lutions x and y of the equation 1 


n-x-—y. 


If n is the difference of two squares, then it is apparent that и can be 
factored as 


n= x — y? = (xt у)(х у). 


Conversely, when я has the factorization n = ab, witha > b2 1, then 
we may write 
n= (22) (64): 
2 2 


Moreover, because я is taken to be an odd integer, a and b are them 
selves odd; hence (а + b)/2 and (a — b)/2 will be nonnegative inte: — 
gers. 


: One begins the search for possible x and y satisfying the equ: | 
tion n = x? — y?, or what is the same thing, the equation 


н ri 


SECTION 5.2 Fermat's Factorization Method 111 


by first determining the smallest integer k for which # = n. Now look 
successively at the numbers 


2 № — n, (k+ 1) — п, (k +2) — п, (В+ 3): п, ... 


until a value of m > yn is found making т? — па square. The process 
cannot go on indefinitely, since we eventually arrive at 


(22+)'-n-(454) 
2 2 d 
the representation of n corresponding to the trivial factorization n = 
n - 1. If this point is reached without a square difference having been 
discovered earlier, then я has no factors other than я and 1, in which 


case it is a prime. 
Fermat used the procedure just described to factor 


2027651281 = 44021 . 46061 


in only 11 steps, as compared to making 4850 divisions by the odd primes 
up to 44021. This was probably a favorable case devised on purpose to 
show the chief virtue of his method: it does not require one to know all 
the primes less than \/7 in order to find factors of n. 


Example 5-1 
To illustrate the application of Fermat's method, let us factor the 

integer n = 119143. From a table of squares, we find that 345? < 119143 
< 3462, thus it suffices to consider values of k? — 119143 for k in the 
range 346 < k < (119143 + 1)/2 = 59572. The calculations begin as 
follows: 

346? — 119143 = 119716 — 119143 = 573, 

347? — 119143 = 120409 — 119143 = 1266, 

348? — 119143 — 121104 — 119143 — 1961, 

349? — 119143 — 121801 — 119143 — 2658, 

350? — 119143 = 122500 — 119143 = 3357, 

351? — 119143 = 123201 — 119143 = 4058, 

3522 — 119143 = 123904 — 119143 = 4761 = 69°. 


112 Fermat's Theorem CHAPTERS 


This last line exhibits the factorization 
119143 = 352? — 69? = (352 + 69)(352 — 69) = 421 - 283, 


the two factors themselves being prime. In only seven trials, we have - 
obtained the prime factorization of the number 119143. Of course, one 
does not always fare so luckily; it may take many steps before a difference 
turns out to be a square. ^ 

Fermat's method is most effective when the two factors of n are 
of nearly the same magnitude, for in this case a suitable square will appear 
quickly. To illustrate, let us suppose that » — 23449 is to be factored. 
The smallest square exceeding n is 154?, so that the sequence &? — n 
starts with 


1542 — 23449 = 23716 — 23449 = 267, 
155? — 23449 = 24025 — 23449 = 576 = 242. 


Hence, factors of 23449 are 
. 23449 = (155 + 24)(155 — 24) = 179. 131. 


When examining the differences k? — n as possible squares, 
many values can be immediately excluded by inspection of the final 
digits. We know, for instance, that a square must end in one of the six 
digits 0, 1, 4, 5,6, 9 (Problem 1a, Section 4.3). This allows us to exclude 
all values in the above example, save for 1266, 1961, and 4761. By cal- 
culating the squares of the integers from 0 to 99 modulo 100, one sees 
further that, for a square, the last two digits are limited to the follows 
twenty-two possibilities: ] 


00 21 41 64 89 

01 24 44 69 96 

04 25 49 76 M 

09 29 56 а : 
16 (36 61 8 


The integer 1266 can be eliminated from consideration in this way. Since 
61 is among the last two digits allowable in a square, it is only necessary 


to look at the numbers 1961 and 4761; the former is not a square, but | 
4761 = 692. 


SECTION 5.3 The Little Theorem 113 


PROBLEMS 5.2 


1. Use Fermat's method to factor 
(a) 2279; 
(b) 10541; 
(c) 340663. [Hint: The smallest square just exceeding 340663 is 
5872.) 

2. Prove that a perfect square must end in one of the following pairs 
of digits: 00, 01, 04, 09, 16, 21, 24, 25, 29, 36, 41, 44, 49, 56, 61, 64, 
69, 76, 81, 84, 89, 96. [Hint: Since х? = (50 + x)? (mod 100) and 
x? = (50 — x)? (mod 100), it suffices to examine the final digits of 
x? for the 26 values x = 0, 1, 2,. . .,25] 

3. Factor the number 2" — 1 by Fermat's factorization method. 

In 1647, Mersenne noted that when a number can be written as a 

sum of two relatively prime squares in two distinct ways, it is com- 

posite and can be factored as follows: iffn=a@+b=ct a, 

then 


> 


S n = (ac + bd)(ac — bd)/(a + d)(a — d). 
Use this result to factor the numbers 
493 = 18 + 13? = 222 + 32, 
апа 38025 = 1682 + 99? = 156° + 117". 


5.3 THE LITTLE THEOREM 


The most significant of Fermat's correspondents in number theory was 
Bernhard Frénicle de Bessy (1605-1675), an official at the French mint 
who was renowned for his gift of manipulating large numbers. (Fréni- 
cle's facility in numerical calculation is revealed by the following inci- 
dent: On hearing that Fermat had proposed the problem of finding cubes 
which when increased by their proper divisors become squares, as is the 
case with 7? + (1 + 7 + 72) = 202, he immediately gave four different 
solutions; and supplied six more the next day.) Though in no way Fer- 
mat's equal as a mathematician, Frénicle alone among his contempo- 
raries could challenge him in number theory and his challenges had the 
distinction of coaxing out of Fermat some of his carefully guarded se- 
crets. One of the most striking is the theorem which states: If p is a prime 
and a is any integer not divisible by p, then p divides a^^! — 1. Fermat 


114 Fermat's Theorem CHAPTER 5 


communicated the result in a letter to Frénicle dated October 18, 1640, 
along with the comment, “I would send you the demonstration, if I did 
not fear its being too long.” This theorem has since become known as 
“Fermat's Little Theorem" to distinguish it from Fermat's “Great” or “Last 
Theorem,” which is the subject of Chapter 11. Almost 100 years were to 
elapse before Euler published the first proof of the Little Theorem in 
1736. Leibniz, however, seems not to have received his share of recog- 
nition; for he left an identical argument in an unpublished manuscript 
sometime before 1683. 
We now proceed to a proof of Fermat's Theorem. 
THEOREM 5-1 (Fermat's Little Theorem). /f p is a prime and p / a, 
then a^- = 1 (mod р). 


Proof: We begin by considering the first p — 1 positive multiples 
of a; that is, the integers 
a, 2a, 3a, .. ., (p - Па. 


None of these numbers is congruent modulo p to any other, nor is 
any congruent to zero. Indeed, if it happened that 


ға == sa (mod p), 1xr«szp-1 


then а could be cancelled to give r= s (mod р), which is impos- 
sible. Therefore, the above set of integers must be congruent 
modulo pto 1,2,3,. . ., p — 1, taken in some order. Multiplying 
` all these congruences together, we find that 
а. 2а-3За... р-1а=1.2.3... (p— 1)(mod р), 


whence 
ar-~ (p — 1)!= (p — 1)! (mod p). 


Once (p — 1)! is cancelled from both sides of the preceding con- 
gruence (this is possible since p / (p — 1)!), our line of reasoning 
culminates in a^^! = 1 (mod р), which is Fermat's Theorem. 


This result can be stated in a slightly more general way in which 
the requirement that p / a is dropped. * 


Совомавх, Jf p is a prime, then a^ = а (mod р) for any integer 
a. 


SECTION 5.3 The Little Theorem 115 


Proof: When pl a, the statement obviously holds; for, in this setting, 
а? = 0 = a (mod p). If p J a, then in accordance with Fermat's 
Theorem, 477 ' — 1 (mod р). When this congruence is multiplied 
by a, the conclusion a” = a (mod p) follows. 


There is a different proof of the fact that а” = а (mod p), in- 
volving induction on a. If a = 1, the assertion is that 1^ = 1 (mod D), 
which is clearly true, as is the case a — 0. Assuming that the result holds 
for а, we must confirm its validity for a + 1. In light of the binomial 
theorem, 


Grm art (P anmi b». 


where the coefficient ( А is given Бу 


(2)- В рр 1)» a b+) 
hk] ир E! 12535. ke ў 
Our argument hinges оп the observation that (2) = 0 (mod p) for 


15 25р – 1. То see this, note that 
u( 2) = po - 1) +++ (p — k +1) =0 (mod p), 


by virtue of which p| & or pl ( p), But p| k! implies that p| j for some 


Jsatisfying 1 = jS k = p — 1, an absurdity. Therefore, pl ( А ог, соп- 


verting to a congruence statement, 


(4) = о «oap. 


The point which we wish to make is that 
(a + 1)? = аР + 12 a + 1 (mod p), 


where the right-most congruence uses our inductive assumption. Thus, 
the desired conclusion holds for a + 1 and, in consequence, for all 
а 2 0. If a is a negative integer, there is по problem: since а = r 
(mod p) for some r, where 0 S r p — 1, we getan se m= r= a 
(mod p). : Я 


116 Fermat's Theorem CHAPTER 5 


Fermat’s Theorem has many applications and is central to much 
of what is done in number theory. On one hand, it can be a labor-saving 
device in certain calculations. If asked to verify that 5** = 4 (mod 11), 
for instance, we would take the congruence 5° = 1 (mod 11) as our 
starting point. Knowing this, 

538 = 50. 3+8 = (510) (5?) 4 
= 1? . 3* == 81 = 4 (mod 11), 
as desired. 

Another use of Fermat's Theorem is as а tool in testing the pri- 
mality of a given integer n. For, if it could be shown that the congruence 

а" = а (mod n) 


fails to hold for some choice of a, then я i$ necessarily composite. As 
an example of this approach, let us look at л = 117. The computation 
is kept under control by selecting a small integer for а; say, a = 2. Since 
27 may be written as 


gir: 27 536.5 == (27)1525 
апа 27 = 128 =11 (mod 117), we have 
217 = 11'S. 25 == (121)*25 = 48 . 25 = 2" (mod 117). 
But 2? = (27)3, which leads to 
221 == 113 == 121 . 11 = 4 . 11 = 44 (mod 117). 
Combining these congruences, we finally obtain 
217 = 44 Æ 2 (mod 117), 


so that 117 must be composite; actually, 117 = 13`. 9. 

It might be worthwhile to give an example illustrating the failure 
of the converse of Fermat's Theorem to hold; in other words, to show › 
that if a"~'!=1 (mod n) for some integer a, then n need not be prime. 
As a prelude we require a technical lemma: 

LEMMA. /fp and q are distinct primes such that Ф = а (mod 4) and 
ач = a (mod p), then a” = a (mod ра). 


Proof: It is known for the last corollary that (a9)? = а (mod p), 
while a? = a (mod p) by hypothesis. Combining these congru- 
ences, we obtain a^" = а (mod р) or, in different terms. 


SECTION 5.3 The Little Theorem 117 


pla — а. In an entirely similar manner, q| a^! — a. The corollary 
to Theorem 2-4 now yields ра| a^ — а, which can be recast as 
а? == a (mod ра). 


Our contention is that 22% = 1 (mod 341) where 341 = 11 - 51. 
In working towards this end, notice that 2° = 1024 = 31 . 33 + 1. Thus, 


2" = 2. 219522. 1 = 2 (mod 31) 
апа 
231 = 2 (20) = 2 . 1° = 2 (mod 11). 
Exploiting the lemma, 
20:5 = 2 (mod 11 - 31) 
or 220 = 2 (mod 341). After cancelling a factor of 2, we pass to 
2» = 1 (mod 341), 


so that the converse to Fermat's Theorem is false. 

The historical interest in numbers of the form 2" — 2 resides in 
the claim made by the Chinese mathematicians over 25 centuries ago 
that я is prime if and only if m| 2" — 2 (in point of fact, this criterion is 
reliable for all integers n = 340). Needless to say, our example, where 
341 | 2%! — 2 although 341 = 11 - 31, lays the conjecture to rest; this 
was discovered in the year 1819. The situation in which n|2" — 2 occurs 
often enough to merit a name though: call a composite integer п pseu- 
doprime whenever n| 2" — 2. It can be shown that there are infinitely 
many pseudoprimes, the smallest four being 341, 561, 645, and 1105. 

The following theorem allows us to construct an increasing se- 
quence of pseudoprimes. 


THEOREM 5-2. If n is an odd pseudoprime, then M, = ves b osa 
larger one. 


Proof: Since n is a composite number, we can write n — rs, with 
1«r-zs- n. Then, according to Problem 21, Section 2,2 
2r — 112" — 1, or equivalently 27 — 1| М» making M, composite. 
By our hypotheses, 2” == 2 (mod n), and hence 2" — 2 = kn for 
some integer &. It follows that 


giu 228 2 mei Qin, 


118 i Fermat's Theorem CI 


This yields 
AMR l1m2"—1 
= (27 — 1)Qn&- n 208-2 +... + 27 4 1) 
= Mna 0 Ф 2-2. $2" + 1) 
= 0 (mod M,). 


We see immediately that 2"" — 2 = 0 (mod M,), in light of which 
M, is a pseudoprime. 


In analogy with Dirichlet's Theorem, it has been shown (1963) 
that any arithmetic progression an + b (n = 1,2,. . .) with gcd(a d 
= 1 contains infinitely many pseudoprimes. These “false primes" 
much rarer than actual primes; for instance, there are only 245 pseu 
doprimes smaller than one million, in comparison with 78492 prime 
The first example of an even pseudoprime, namely the number 


161038 — 2 . 73 . 1103, 


was found in 1950. $ 

There exist composite numbers, n, with the property tha 
a" = a (mod n) for all integers a. The least such n is 561. These ex 
ceptional numbers are called absolute psuedoprimes ог Carmicbae 
numbers, for R. C. Carmichael, who was the first (1909) to notice th: 
existence. To see that 561 = 3 . 11. 17 is an absolute pseudopriml 
notice that gcd(a , 561) = 1 gives gcd(a , 3) = gcd(a , 11): 
gcd(1, 17) = 1. An application of Fermat's Theorem leads to the coi 
gruences | 


4! = 1 (mod 3), a" = 1 (mod 11), а'6 = 1 (mod 17), 
and, in turn, to $ 


GO == (œ) = | (mod 3), 
4 = (a) = | (mod 11), 
a = (a6) = | (mod 17). 
These give rise to the single congruence @ = 1 (mod 561), whe 


Bed(a , 561) = 1, But then @! = a (mod 561) for all a, showing 561 
to be an absolute pseudoprime. 1 


We next present a theorem which furnishes a means for pro 
ducing absolute pseudoprimes. 


SECTION 5:3 The Little Theorem 


THEOREM 5-3. Let n be a composite square-free integer; say, 
n= рр, «++ р» where the p, are distinct primes. Гр — 11 n — 1 
fori = 1,2, +++, r, then n is an absolute pseudoprime. 


Proof: Suppose that a is an integer satisyfing gcd(a, n) = 1, so that 
gcd(a , p) = 1 for each #4 Then Fermats Theorem yields 
pil a=" — 1. Since p, — 1| n — 1, we have p,| a^^! — 1, and 
therefore p,l a" — a for all a arid і = 1, 2, +++, r. Asa result of the 
corollary to Theorem 2-4, we end up with n| a" — а, which makes 


119 


nan absolute pseudoprime. 


Examples of integers which satisfy the conditions of Theorem 5-3 are 
1729 = 7 . 13 19, 6601 =7.23. 41, and 10585 = 5, 29 73. 


It is widely believed that infinitely many pseudoprimes exist, but this 
conjecture remains unproven, and there are just 43 of them less than one 


million. 


PROBLEMS 5.3 


1. Verify that 18* = 1 (mod 7*) for k = 1, 2, 3. 


2. (a) If gcd(a , 35) = 1, show that а!2 == 1 (mod 35). [Hint: From 
Fermat's Theorem a* = 1 (mod 7) and а* » 1 (mod 5).] 
(b) If gcd(a , 42) = 1, show that 168 = 3.7. 8 divides 
#7221, 
(c) If ged(a, 133) = gcd(b, 133) = 1, show that 13314" — b". 
3. Prove that there exist infinitely many composite numbers n for 
which а" == a (mod n). (Hint: Take п = 2p, where p is an odd 
prime.] 
4. Derive each of the following congruences: 
(a) а! ва a (mod 15) for all a. 
[Hint: By Fermat's Theorem, a 9 a (mod 5).] 
(b) 4 = a (mod 42) for all a. 
(c) a? a (mod 3 + 7 - 13) for all a. 
(d) а? == a (mod 30) for all а. 
5. If gcd(a, 30) = 1, show that 60 divides a* + 59. 
6. (a) Find the units digit of 3™ by the use of Fermat's Theorem. 


(b) For any integer a, verify that а? and а have the same units 
digit. 


120 


72 


10. 


11. 


14. 


15; 


16. 


Fermat's Theorem CHAPTER 5 


IF 7 Г а, prove that either a? + 1 or а? — 1 is divisible by 7. [Hint: 
Apply Fermat's Theorem.] 

The three most recent appearances of Halley's comet were in the 
years 1835, 1910, and 1986; the next occurrence will be in 2061. 
Prove that 


1835" + 1986?! = 0 (mod 7). 


(a) Let p be a prime and gcd(a, р) = 1. Use Fermat’s Theorem 
to verify that x =.a?~*b (mod p) is a solution of the linear 
congruence ах == b (mod р). 

(b) By applying part (a), solve the linear congruences 2x = 1 
(mod 31), бх == 5 (mod 11), and 3x = 17 (mod 29). 


“Assuming that a and b are integers not divisible by the prime р, 


establish the following: 

(a) If ar = b^ (mod p), then a= b (mod p). 

(b) If a^ = b^ (mod p), then a = & (mod p»). [Hint: By (а), 
a= b + рег some k, so that а? — b^ = (b + pk)? — bh; 
now show that p? divides the latter expression.] 

Employ Fermat's Theorem to prove that, if D is an odd prime, then 
(a) 1^-'- 22-14 32-1 +... + (p — 17-1 = —1 (mod р). 
(b) 12 + 2? + 3^ +... + (p— 1920 (mod р). [Hint: Recall 

the identity 1 + 2 +3 + ... + (p— 1) = p(p — 1)/2] 

Prove that if p is an odd prime and k is an integer satisfying 1 = k 

5 p — 1, then the binomial coefficient 


im 1) = (1+ (mod p. 


- Assume that p and 4 are distinct odd primes such that 


р 14 — 1. If ged(a, pg) = 1, show that ar~) = 1 (mod ра). 
If p and qare distinct primes, prove that 


p' ^! + 4? 21 (mod ра). 

Establish the statements below: 

(a) Ifthe number M, = 2° — 1 is composite, where p is a prime, 
then M, is a pseudoprime. 

(b) Every composite number Е, = 22" + 1isa pseudoprime (и 
= 0,1,2...). [Нйи: By Problem 21, Section 2.2, 27* | 2" 
implies that 22" * ' — 1122" — 1; but £,|27 * — 1] 

Confirm that the following integers are absolute pseudoprimes: 

(а) 1387 = 19. 73, 

(b) 28212 7.13. 313 

(c) 1905 = 3.5. 127. 


SECTION 5.4 Wilson's Theorem 121 


17. Show that the pseudoprime 341 is not an absolute pseudoprime by 
showing that 1131 = 11 (mod 341). [Hint: 31 / 11* — 11.] 
18. (a) When я = 2p, where p is an odd prime, prove that a" - ! 
= a (mod n) for any integer а. 
(b) For» = 195 = 3 · 5 · 15, verify that а" - 2 = a (mod п) for 
any integer a. 
19. Prove that any integer of the form 


п = (62 + 1) (128 + 1)(18k + 1) 


is an absolute pseudoprime if all three factors are prime; hence, 
1729 = 7 - 13 - 19 is an absolute pseudoprime. 

20. Show that 561125 — 2 and 561135 — 3. It is an unanswered ques- 
tion whether there exist infinitely many composite numbers n with 
the property that n|2” — 2 and n| 3” — 3. 


5.4 WILSON’S THEOREM 


We now turn to another milestone in the development of number theory. 
In his Meditationes Algebraicae of 1770, the English mathematician 
Edward Waring (1741-1793) announced several new theorems. Fore- 
most among these is an interesting property of primes reported to him 
by one of his former students, a certain John Wilson. The property is the 
following: if p is a prime number, then p divides (p — 1)! + 1. Wilson 
appears to have guessed this on the basis of numerical computations; at 
any rate, neither he nor Waring knew how to prove it. Confessing his 
inability to supply a demonstration, Waring added, “Theorems of this 
kind will be very hard to prove, because of the absence of a notation to 
express prime numbers.” (Reading the passage, Gauss uttered his telling 
comment on "'notationes versus notiones," implying that in questions of 
this nature it was the notion that really mattered, not the notation.) De- 
spite Waring's pessimistic forecast, Lagrange soon afterwards (1771) gave 
a proof of what in the literature is called "Wilson's Theorem" and ob- 
served that the converse also holds. It would be perhaps more just to 
name the theorem after Leibniz, for there is evidence that he was aware 
of the result almost a century earlier, but published nothing upon the 
subject. 
Now to a proof of Wilson's Theorem. 


THEOREM 5-4 (Wilson). If p is a prime, then 
(p — 1)! z —1 (mod p). 


122 Fermat's Theorem CHAPTER 5 


Proof: Dismissing the cases p = 2 and p = 3 as being evident, let 
us take р > 3. Suppose that a is any one of the p — 1 positive in- 
tegers 


102060717105 Dm 


and consider the linear congruence ax = 1 (mod p). Then 
gcd(a, р) = 1. By Theorem 4-7, this congruence admits a unique 
solution modulo p; hence, there is a unique integer a’, with 1 = 
а X p — 1, satisfying аа = 1 (mod p). 

Since p is prime, a = а’ ifand onlyif a = 1ora — р - 1. 
Indeed, the congruence 42 = 1 (mod р) is equivalent to (a — 1) 
- (a + 1) = 0 (mod p). Therefore, either а — 1 = 0 (mod р), 
in which case а = 1, or a + 1 = 0 (mod р), in which case 
ap 

If we omit the numbers 1 and p — 1, the effect is to group , 
the remaining integers 2, 3, . . ., p — 2 into pairs а, a’, where 
a + a, such that аа = 1 (mod p). When these (p — 3)/2 con- 
gruences are multiplied together and the factors rearranged, we 
get 


2.3... (p — 2) =1 (mod p) 
or rather 
(p — 2)! & 1 (mod p). 
Now multiply by p — 1 to obtain the congruence 
(р- )!2p-— 12 —1 (mod p), 
as was to be proved. 
A concrete example should help to clarify the proof of Wilson's 
Theorem. Specifically, let us take р = 13. It is possible to divide the 


integers 2, 3, . . ., 11 into (p — 3)/2 = 5 pairs each of whose products 
is congruent to 1 modulo 13. To write these congruences out explicitly: 


2.7251 (mod 13), 
3.9 == 1 (mod 13), 
4. 10 == 1 (mod 13), 
5.8221 (mod 13), 
6. 11 = 1 (mod 13). 


a rt hee 


SECTION 5.4 Wilson's Theorem м 123 


Multiplying the above congruences gives the result 
11! = (2.7) (3.9) (4+ 10) (5 - 8) (6 - 11) =1 (mod 13) 
and so 
12! = 12 = —1 (mod 13). 


Thus, (p — 1)! = —1 (mod p), with p = 13. 

The converse of Wilson's Theorem is also tue: И (n — 1)! 
= —] (mod n), then n must be prime. For, if n is not a prime, then п 
has a divisor d with 1 < 4 < n. Furthermore, since d = n — 1, d occurs 
as one of the factors in (n — 1)!, whence d| (n — 1)!. Now we are as- 
suming that n| (п — 1)! + 1, andso d| (n — 1)! + 1 too. The conclusion 
is that d| 1, which is nonsense. 

Taken together, Wilson's Theorem and its converse provide a 
necessary and sufficient condition for determining primality; namely, an 
integer n > 1 is prime if and only И (п — 1)! = — 1 (mod n). Unfor- 
tunately, this test is of more theoretical than practical interest since as 
n increases, (м — 1)! rapidly becomes unmanageable in size. 

We would like to close this chapter with an application of Wil- 
son's Theorem to the study of quadratic congruences. (It is understood 
that quadratic congruence means а congruence of the form ах? + bx 
+ c= 0 (mod п), with a 5 0 (mod n).} This is the content of 


THEOREM 5-5. The quadratic congruence x? + 1 = 0 (mod В), 
where р is an odd prime, bas a solution if and only if p =1 
(mod 4), 


Proof: Let а be any solution of 2? + 1 = 0 (mod р), so that 
а = —1 (mod p). Since р / a, the outcome of applying Fermat's 
Theorem is: 


Т== а? -! = (2) - 1)/2 = (-D*- n/a (mod Р). 
The possibility that p = 4k + 3 for some k does not arise. If it did, 
we would have 
(-1)0- 94 = (-)9*!-7 1, 


hence 1 = —1 (mod p). The net result of this is that p| 2, which 
is patently false. Therefore, p must be of the form 4k + 1. 


124 Fermat's Theorem CHAPTER 5 


Now for the opposite direction. In the product 


-1 pti 
Bo. BD ep 


(р-1!=1:2... Е 


2)(p— 1), 


we have the congruences 


р-1=-1 (mod p), 
p-— 2 = —2 (mod p), 


eu 


HERE uas (mod p). 


Rearranging the factors produces 


(p-1e1-(-D-2.(-2) PERDER (mod p) 


^ 


= (1. visa aa P= 1) (mod р), 


since there are (p — 1)/2 minus signs involved. It is at this point that 
Wilson's Theorem can be brought to bear; for, (p — 1)! = —1 (mod р), 
whence 


ани vl ( 21] (mod p). 


If we assume that p is of the form 4k + 1, then (—1)'^- ^? = 1, leaving 
us with the congruence 


Hu [( 21] (mod p). 


The conclusion: ((p — 1)/2]! satisfies the quadratic congruence x? + 1 
==0 (mod p). 


Let us take a look at an actual example; say, the case p — 13, 
which is a prime of the form 4k + 1. Here, we have (p — 1)/2 = 6 and 
it is easy to see that 


6! = 720 == 5 (mod 13), 


SECTION 5.4 Wilson's Theorem 125 


while 


52 + 1 = 26 = 0 (mod 13). 


Thus the assertion that [((+(p — 1))!}? + 1=0 (mod p) is correct for 
рт 15 

Wilson's Theorem implies that there exists an infinitude of com- 
posite numbers of the form s! + 1. On the other hand, it is an open 
question whether n! + 1 is prime for infinitely many values of n. The 
only values of n in the range 1 = п = 100 for which n! + 1 is known 
to be a prime number are n = 1, 2, 3, 11, 27, 37, 41, 73, and 77. Currently 
the largest prime of the form n! + 1 is 1477! + 1, discovered in 1984. 


PROBLEMS 5.4 


1. (а) Find the remainder when 15! is divided by 17. 
(b) Find the remainder when 2(26!) is divided by 29. [Hint: By 
Wilson’s Theorem, 2(p — 3)! = — 1 (mod p) for any odd 
prime p > 3.] 
2. Determine whether 17 is a prime by deciding whether or not 
16! = —1 (mod 17). 
3. Arrange the integers 2, 3, 4,. . ., 21 in pairs aand b with the prop- 
erty that ab = 1 (mod 23). 
A. Show that 18! = —1 (mod 437). 
5. (a) Prove that an integer п > 1 is prime if and only if (п — 2)! 


= 1 (mod n). 
(b) If 2 is a composite integer, show that (п — 1)! == 0 (mod n), 
except when n = 4. . 


6. Given a prime number p, establish the congruence 
(@-1!=p-—1(moød1 +2+3+...+Ф- 1). 


7. If pis a prime, prove that 

plar + (p— D!a and pl- 1)!а? + а 
for any integer а. [Hint: By Wilson's Theorem, a^ + (p —1)!a 
== æ — a (mod p).] 
Find two odd primes р = 13 for which the congruence (p — 1)! = 
—1 (mod p?) holds. 


126 


9. 


10. 


11. 


12 


13 


14 
15 


16. 


17. 


Fermat's Theorem CHAPTER 5 


Using Wilson's Theorem, prove that 
12.32.52... (p— 2)? = (-1) + »2 (mod р) 
for any odd prime p. [Hint: Since k= — (р — k) (mod p), it follows 
that 2 . 4 .б... (p— 1) = (-1)#-121.3.5... (р — 2) 
(mod р).] 
(a) For a prime p of the form ák + 3, prove that either 


(=)= 1 (mod p) or (25) = -1 (mod ps 


hence, [ф — 1)/2}! satisfies the quadratic congruence 
х? = 1 (mod p). 

(b) Use part (a) to show that if р = 4k + 3 is prime, then the 
product of all thé even integers less than р is congruent 
modulo p to either 1 or — 1. (Hint: Fermat's Theorem implies 
that 2^7 2 = +1 (mod р).] 

Apply Theorem 5-5 to find two solutions to the quadratic congru- 

ences x? = —1 (mod 29) and x? = —1 (mod 37). 

Show that if p = 4k + 3 is prime and а? + b? = 0 (mod p), then 

a= b= 0 (mod p). [Hint: И a= 0 (mod p), then there exists an 

integer c such that ac = 1 (mod р); use this fact to contradict 

Theorem 5-5.] 

Prove that the odd prime divisors of the integer n? + 1 are of the 

form 4k + 1. [Hint: Theorem 5-5] 

Verify that 4(29!) + 5! is divisible by 31. 

For a prime p and 0 = k = p — 1, show that B(p—k-—1! 

= (—1)**! (mod р). 

If p and q are distinct primes, prove that 


palan —a^— а + а 
for any integer а. 
Prove that if p and p + 2 area pair of twin primes, then 


4((p — 1)! + 1) + p=0 (mod p(p + 2)). 


Number-Theoretic 
Functions 


“Mathematicians 
are like Frenchmen: 
whatever you say to them 
they translate 
into their own language 
and forthwith 


й is something entirely 
different." 


GOETHE 


6.1 THE FUNCTIONS т AND o 


Certain functions are found to be of special importance in connection 
with the study of the divisors of an integer. Any function whose domain 
of definition is the set of positive integers is said to be a number-theoretic 
(or arithmetic) function. While the value of a number-theoretic func- 
tion is not required to be a positive integer or, for that matter, even an 
integer, most of the number-theoretic functions that we shall encounter 
are integer-valued. Among the easiest to handle, as well as the most nat- 
ural, are the functions т and c. 


DEFINITION 6-1. Given a positive integer n, let т(и) denote the 
number of positive divisors of » and (я) denote the sum of these 
divisors. 


For an example of these notions, consider n = 12. Since 12 has 
the positive divisors 1, 2, 3, 4, 6, 12, we find that 
7012) =6 and o(12)=1+2+3+4+6+ 12 = 28. 
For the first few integers, 
т(1) = 1, т(2) = 2,1(3) = 2, 7(4) = 3, 7(5) = 2,716) =4,.... 
and 
o(1) = 1,0(2) = 3,0(3) = 4, 0(4) = 7, 0(5) = 6,0(6) =12,.... 


It is not difficult to see that (n) = 2 if and only if n is a prime number; 
also, a(n) = n + 1 and if only if п is a prime. 

Before studying the functions т and с in more detail, we wish to 
introduce a notation that will clarify a number of situations later on. It 
is customary to interpret the symbol 


Ула 


din 


128 


Р 
» 
| 


SECTION 6.1 Тһе Functions т and с 129 


to mean, “Sum the values f(d) as d runs over all the positive divisors of 
the positive integer n.” For instance, we have 


E = о + f2) + f(4) +5) + fa0) + f(20). 


4! 20 
With this understanding, т and « may be expressed in the form 


т(п) = D1, o(n) = Уа 


din din 


The notation Da n 1, in particular, says that we are to add together as 
many 1's as there are positive diviors of n. To illustrate: the integer 10 
has the four positive divisors 1, 2, 5, 10, whence 

т(10) = 31-1414141-4, 


di10 


while 
«(10 = J d=1+2+5+10= 18. 


_ 4110 


Our first theorem makes it easy to obtain the positive divisors of 
a positive integer 7 once its prime factorization is known. 


THEOREM 6-1. [f = рр... p,” is the prime factorization of 
n> 1, then the positive divisors of n are precisely those integers d 
of the form 


d= рр,“ ... р“, 


whereOS а, = k (i= 1, 2,..., n). 


Proof: Note that the divisor d = 1 is obtained when a, = а, = --- 
= а, = 0, апа n itself occurs when а, = в, а, = k,...,4= 
k,. Suppose that d divides п nontrivially; say n = dd', where d > 
1, d' > 1. Express both d and d’ as products of (not necessarily 
distinct) primes: 

d= qd: 4, d'— hh s hy 
with q,, t, prime. Then . 


pip,” ...p*- 4 --- ql, 


130 Number Theoretic Functions CHAPTER 6 


are two prime factorizations of the positive integer m. By the 
uniqueness of the prime factorization, each prime q; must be one 
of the р,. Collecting the equal primes into a single integral power, 
we jet 


d= qq: = рир. prn 
where the possibility that а, = 0 is allowed. 
Conversely, every number d = p,p,” --- р," (0 = а, = 
k)turns out to be a divisor of n. For we can write 
n= php? --- p 
= (p^ p^ IS РАФ” * ^p^ i the p^ Ny 
= dd', h 
h, 


with d' = p, ^ *ip/&7*: ... p, "rand Б, — a, = 0 for each i. Then 
d' > Oand а| n. 


We put this theorem to work at once. 


THEOREM 6-2. Ги = p, Lans - p," is the prime factorization of 
n> 1, then 


(a) т(п) = (В + 1) (e; + 1) --- (k, +1), and 


tio ae fp du И У 
(b) o(n) ок 
1 


Proof: According to Theorem 6-1, the positive divisors of 7 are pre- 
cisely those integers 


а= рер... pr", 


where 0 = a, = k, There аге k, + 1 choices for ће exponent а; 
№, + I choices for 2, . . .; k, + 1 choices for a; hence, there are 


(& + De +... (1) 
possible divisors of n. 
In order to evaluate с(л), consider the product 
G tb t pé ca m pt pio ph) 
ЗО р-р? + ---+ p). 


SECTION 6.1 The Functions г and с 131 


Each positive divisor of n appears once and only once as a term in the 
expansion of this product, so that 
aln) = (1 +p, + р: +... +p") 
+ A Fp Фр +... +p"). 


Applying the formula for the sum of a finite geometric series to the ith 
factor on the right-hand side, we get 


2 aic 
1+p,+ pit... + рие ВЕ 
рт 1 


It follows that 


Corresponding to the Ў; notation for sums, a notation for prod- 
ucts may be defined using the Greek capital letter “‘pi.” The restriction 
delimiting the numbers over which the product is to be made is usually 
put under the П-ѕірп. Examples are 


II «2 -K0)0/0/0)0/6, 


15455 


Пло = ADIO), 


419 


Пл = 42/99. 


piso 
p prime 


With this convention, the conclusion to Theorem 6-2 takes the compact 
form: if n = рр," ... p,” is the prime factorization of n > 1, then 


т") = II +1) 


15/57 


апа 


132 Number Theoretic Functions CHAPTER 6 


Example 6-1 
The number 180 = 2? - 3? - 5 has 


т(180) = (2 + 1)(2 +1) + 1) = 18 
positive divisors. These are integers of the form 
2^. 399 5^, 
where a, = 0, 1, 2; а, = 0, 1, 2; а, = 0, 1. Specifically, we obtain 
1, 2, 3, 4, 5, 6, 9, 10, 12, 15, 18, 20, 30, 36, 45, 60, 90, 180. 


The sum of these integers is 


2/—12 —1571. 7 26274 
ает 546. 


0(180) = 


One of the more interesting properties of the divisor function т 
is that the product of the positive divisors of an integer » > 1 is equal 
to п", It is not difficult to get at this fact: Let d denote an arbitrary 
positive divisor of n, so that n = dd’ for some d'. As d ranges over all 
1(d) positive divisors of n, т(4) such equations occur. Multiplying these 
together, we get 

w™ = Па: Па. 
din din 
But as d runs through the divisors of n, so does d’; hence, 
IMa n d = Па, „ d'. The situation is now this: 


vele) 


din 


or equivalently, 


mn = Па 


din 


The reader might (or, at any rate, should) have one lingering 
doubt concerning this equation. For it is by no means obvious that the 
left-hand side is always an integer. If 7(7) is even, there is certainly no 
problem. When r(7) is odd, п turns out to be a perfect square (Problem 
7), say п = т; thus 1”? = ут, settling all suspicions. 


SECTION 6.1 The Functions 7 and ø ў 133 


For a numerical example, the product of the five divisors of 16 
(namely, 1, 2, 4, 8, 16) is 


Па = 167062 = 1652 = 45 = 1024. 


416 


Multiplicative functions arise naturally in the study of the prime 
factorization of an integer. Before presenting the definition, we observe 
that 


7(2 + 10) = 7(20) = 6 # 2-4 = 7(2). т(10). 
At the same time 
0(2. 10) = 0(20) = 42 * 3.18 = e(2) - в(10). 


These calculations bring out the nasty fact that, in general, it need not 
be true that 


т(тп) = т(т)т(п) and o(mn) = o(m)o(n). 


On Ще positive side of the ledger, equality always holds provided we 
stick to relatively prime m and n. This circumstance is what prompts 


DEFINITION 6-2. A number-theoretic function fis said to be multi- 
plicative if 


S( mn). = f(m)f(n) 


whenever gcd(m, n) = 1. 


For simple illustrations of multiplicative functions, one need only 
consider the functions given Бу f(n) = 1 and g(z) = n for all n 2 1. 
It follows by induction that if fis multiplicative and m, 2,,. . ., л, аге 
positive integers which are pairwise relatively prime, then 


тп, ++. n) = fin) f(m) --- fin). 


Multiplicative functions have.one big advantage for us: they are 
completely determined once their values at prime powers are known. 
Indeed, if n > 1 isa given positive integer, then we can write п = p,^p,* 
` -+ pr” in canonical form; since the рі are relatively prime in pairs, the 
multiplicative property ensures that м 


Ln) = fib Mf) --- Јри). 


134 Number Theoretic Functions CHAPTER 6 


If fis a multiplicative function which does not vanish identi- 
cally, then there exists an integer n such that f(») # 0. But 


Кп) = fin- 1) = ffa). 


Being nonzero, f(n) may be cancelled from both sides of this equation 
to give /(1) = 1. The point to which we wish to call attention is that f(1) 
= 1 for any multiplicative function not identically zero. 

We now establish that т and о have the multiplicative property. 


THEOREM 6-3. The functions т and o are both multiplicative func- 
tions. 


Proof: Let m and n be relatively prime integers. Since the result is 
trivially true if either m or n is equal to 1, we may assume that т 
> land n> 1. If 


hid 


m= p"p^...p' and n= qiq? ... q^ 


are the prime factorizations of m and n, then, since gcd(m , п) 
= 1, no p, can occur among the 4. It follows that the prime fac- 
torization of the product m7 is given by 


mn = p^... pq +++ qi. 
Appealing to Theorem 6-2, we obtain 
т(тп) = [Ge + 1) --- (k, + DIG +1) G+ DY] 
= 1(m)r(n). 


In a similar fashion, Theorem 6-2 gives 


ct p^*'—-1 esl 
с(тп) [=F AUR US 
gh -1 1-1 
[ PAL моя ] 
= a(m)o(n). 


Thus, т and в are multiplicative functions. 


We continue our program by proving a general result on mul- 
tiplicative functions. This requires a preparatory lemma. 


LEMMA. Jf gcd(m , п) = 1, then tbe set of positive divisors of mn 
consists of all products d,d,, where d, | п, 4, | m and gcd(d, , 4,) 
= 1; furtbermore, tbese products are all distinct. 


SECTION 6.1 TheFunctions rando , 135 


Proof: It is harmless to assume that m > 1 and n > 1; let m 
= рер, ... p” and n = qq? ... q^ be their respective prime 
factorizations. Inasmuch as the primes 5,. .., p, q,. . ., qare 
all distinct, the prime factorization of тя is 

mn = pi" «pad ss. gh. 


Hence, any positive divisor dof mn will be uniquely representable 
in the form . j 


d= р“ e pg SE q”, Sask, O Sb Sj. 
This allows us to write das d = d,d,, where d, = p,^ --- p,” divides т 


and d, = д"... q divides n. Since no p, is equal to any д, we surely 
have gcd(d, , d) = 1. 


A keystone in much of our subsequent work is 


THEOREM 6-4. If fis a multiplicative function and F is defined by 
F(n) = У Ха, 


din 


then F is also multiplicative. 


Proof: Let m and n be relatively prime positive integers. Then 
Amn) = У fd = D Лаа). 


d т dom 
а n 


since every divisor d of mn can be uniquely written as a product 
of a divisor d, of m and a divisor d, of n, where gcd(d,, d) = 1. 
By the definition of a multiplicative function, 


Kadd) = fd) fid). 
It follows that 


Ктп) = 3 f(d) ftd) 


dom 
d; n 


ph ( Ea) X Zra) = Ет) Fn). 


dy m dy n 


136 Number Theoretic Functions CHAPTER 6 
It might be helpful to take time out and run through the proof 
of Theorem 6-4 in a concrete case. Letting m = 8 and n = 3, we have 
FS + 3) = DAO 
4124 g . 
= fü) + Д2) + f(G) + 4) + (6) + f + f02) + f(24) 
=а. 0+2. 1 +Л\. 3) + f4-1) + f2- 3) 
+ 8. 1) +Л4 - 3) + f(8 - 3) А 


= (1) fQ) + ADA + SMG) + АК + ККЗ) 
+ А + AASB) + KDG) 


= [До + K2) + ЛА) + Ха) + ЛЗ] 
= DAD . DAD = F(8) FB). 


dis di3 — 
Theorem 6-4 provides a deceptively short way of drawing the 
conclusion that т and о are multiplicative. 


CoroLary. The functions r ando are multiplicative functions. 


Proof: We have mentioned before that the constant function f(n) 
= 1 is multiplicative, as is the identity function Кп) = п. Since r 
and e may be represented in the form 

т(п) = 1 and o(n) = 34 


din din 


the stated result follows immediately from Theorem 6-4. 


PROBLEMS 6.1 


1. Let mand я be positive integers and p,, р». . - , p, be the distinct 
primes which divide at least one of т or n. Then m and я may be 
written in the form 

a, with k, => 0 богі = 1, 2,.. . 


т = p,"'p,” --- py", 
р cpl: with j = 0 for i= 1,2,... 


Prove that 
gcd(m, n) = рир" --- ри", Icm(m, n) = pi” pi? «pr^ 
where u, = min (А, j), the smaller of k,and j; and v, = max IE 
the larger of А, and j,- Ў i 


SECTION 6.1 The Functions т and о 137 


2. Use the result of Problem 1 to calculate gcd(12378 , 3054) and 
1cm(12378 , 3054). T 
3. Deduce from Problem 1 that gcd(m, n) lcm(m, п) = mn for pos- 
itive integers m and n. 
4. Inthe notation of Problem 1, show that gcd(m, n) = 1 if and only 
if bj, = 0fori1,2,...,r. 
5. (a) Verify that r(n) = r(n + 1) = r(n + 2) = т(п + 3) holds 
for n = 3655 and 4503. 
(b) When n = 14, 206, and 957, show that o(m) = a(n + 1). 
6. Forany integer n = 1, establish the inequality т(и) = 2n. (Hint: 
If d| я, then one of dor n/dis less than or equal to vn] 
7. Prove that: i 
(a) v(m) is an odd integer if and only if л is a perfect square; 
(b) a(n) is an odd integer if and only if n is a perfect square or 
twice a perfect square. [Hint: If p is an odd prime, then 
1+р+р? +... + р? іѕ odd only when # is even.] 
8. Show that Jya 1/4 = e()/n for every positive integer 7. 


9. If nis a square-free integer, prove that т(п) = 2", where r is the 
number of prime divisors of 7. 


10. Establish the assertions below: 
(a) Ifn=p,'p;” --- p,ris the prime factorization of > 1, then 


j => (1-1) (1-4) (1-2). 


(b) For any positive integer 7, 
c(n)/n = 1+ 1/2 + 13+... + 1/n. 


[Hint: See Problem 8.] 
(c) If n 1isa composite number, then oln) > n+ 1Vn.|[Hint: 
Let d| n, where 1 < d < п, so 1 < n/d < п каз 
Va, then n/d = Vn] ; 
11. Given a positive integer k 1, show that there are infinitely many 
integers n for which r(m) = k, but at most finitely many n with o(n) 
= k. [Hint: Utilize Problem 10(а).] 
12. (а) Find the form of all positive integers п satislying т(п) 
= 10. What is the smallest positive integer for which this is 
true? ` н 
(b) Show that there аге no positive integers 7 satisfying в(п) = 
10. [Hint: Note that for п > 1, a(n) > n.) 


138 


13. 


14. 


15 


16. 


17. 


18. 


19. 


20 


21. 


Number Theoretic Functions CHAPTER 6 


Prove that there are infinitely many pairs of integers m and n with 
o(m?) = c(7?). [Hint: Choose ksuch that ged(k, 10) = Land con- 
sider the integers т = 5k, п = 4k] 

For k >. 2, show each of the following: 

(а) n= 2*- 1 satisfies the equation o(m) = 2n — 1; 

(b) if 2*— 1 is prime, then n = 2*-1(2* — 1) satisfies the equa- 
tion o(m) = 2n; 

(c) if 2* — 3 is prime, then я = 2*~1(2* — 3) satisfies the equa- 
tion a(n) = 2n + 2. 

It is not known if there are any positive integers n for which 
a(n) = 2n +1. 

If n and n + 2 are a pair of twin primes, establish that 

a(n + 2) = a(n) + 2; this also holds for n = 434 and 8575. 

(a) For any integer и > 1, prove that there exist integers n, and 
n, with т(п,) + T(m) = n. 

(b) Prove that Goldbach's Conjecture implies that for each even 
integer 27 there exist integers ә, and m, with o(n,) + о(п,) 
О: i 

For a fixed integer k, show that the function f defined by (и) 
= n* is multiplicative. 

Let fand g be multiplicative functions such that (p) = g(p*) for 
each prime р and k = 1. Prove that f= 8. i 

Prove that if fand g are multiplicative functions, then so is their 

product fg and quotient //g (whenever the latter function is de- 


fined). 


Define the function p by taking p(1) = 1 and p(n) = 27, ifthe prime 
factorization of n > 1is n = p,"ip,” ... р", For instance, p(8) = 
2 and p(10) = p(36) = 22, 
(a) Deduce that p isa multiplicative function. 
(b) Find a formula for F(n) = Dai „р(4) in terms of the prime 
factorization of n. 2 
For any positive integer n, prove that ),,,7(d) = (Saint (d))?. 


[Hint: Both sides of the equation in question are multiplicative 
functions of n, so that it suffices to consider the case n = p*, where 
pis a prime.] 


SECTION 6.2 The Möbius Inversion Function Ra ‚ ‚139 


22. Given n = 0, let o,(m) denote the sum of the sth powers of the 
positive divisors of n; that is, 
a(n) = Уа: 
din 
Verify the following: 
(a) в, = tando, = в. 
(b) а, is a multiplicative funciton. (Hint; The function f, defined 
by f(n) = m is multiplicative.] 
(c) If n = p,^ p," ... p,” is the prime factorization of n, then 


» Е 
еи ( р’ 1 PETI 


(e H 1) 
РАН 
23. For any positive integer n, show that 


@) Yad = У К, and 


din 


b) Dold = X ard) 
din d din 
[Hint: Since the functions 


Fin) = Daino(@ and Gn) = Dain (n/d) т(а) 


are both multiplicative, it suffices to prove that F(p*) = G(p*) for 
any prime р.] 
6.2 THE MOBIUS INVERSION FORMULA 


We introduce another naturally defined function on the positive inte- 
gers, the Möbius u-function. 


DEFINITION 6-3. For a positive integer n, define џ by the rules 


lifn=1 
u(n) = < 0 if p?| n for some prime р 
(— D'if n = рр, --- p,, where the p,are distinct primes 


140 Number Theoretic Functions CHAPTER 6 


Put somewhat differently, Definition 6-3 states that n(n) = 0 if 
n is not a square-free integer, while n(n) = (—1)' if n is square-free 
with r prime factors. For example: po) = но. 3.5) = С! 
= —1. The first few values of и are 


u(1) = 1,42) = —1, 43) = —1, x4) = 0, 
и(5) = —1,H(6) = 1,.... 


If p is a prime number, it is clear that (р) = —1; also, и(р*) = 0 for 
kz2. 

As the reader may have guessed already, the Möbius p-function 
is multiplicative. This is the content of 


THEOREM 6-5. The function p is a multiplicative function. 


Proof: We want to show that u(mn) = w(m)u(n), whenever т and 

n are relatively prime. If either р? | т or р?| п, ра prime, then 

p? | mn; hence, и(тп) = 0 = и(т)и(п), and the formula holds 

trivially. We may therefore assume that both m and n are square- 

_ free integers. Say, m = Dips ::: Do n = Ф `` 4 the primes p, 
~ and а, being all distinct. Then 


u(mn) = u(pi s Ds а) = (-1)'** 
= (-1)(-1)' = umnun, 


which completes the proof. 


Let us see what happens if u(d) is evaluated for all the positive 
divisors dof an integer n and the results added. In case и = 1, the answer 
is easy; here, 


Ded = в = 1 


dii 


Suppose that n > 1 and put - ; 


Қп) = Dela). 
din 
To prepare the ground, we first calculate F(n) for the power of a prime, 
say, п = р“. The positive divisors of р? are just ће k + 1 integers 1, P, 
ph... p*, so that - 
Ro = X = в) + ир) + we) + --- + и 
ез aip? Ы 
= щ1) + (p) = 1 + (-1) = 0. 


- 


SECTION 6.2 The Mébius Inversion Function 141 


Since џ is known to be a multiplicative function, an appeal to 
Theorem 6-4 is legitimate; this result guarantees that Fis multiplicative 
too. Thus, if the canonical factorization of n is n = рр, ... p," then 
F(n) is the product of the values assigned to F for the prime powers in 
this representation: 


F(n) = Қр“) Кр") «++ F(p,") = 0. 


We record this result as 


THEOREM 6-6. For each positive integer n = 1, 


_ flifn=1 
Зои 


where d runs through the positive divisors of n. 


For an illustration of this last theorem, consider n = 10: не 
divisors of 10 are 1, 2, 5, 10 and the desired sum is 


У ш(а) = ва) + и(2) + и(5) + и(10) 


2m (1) Оо. 


The full significance of Móbius' function should become ap- 
parent with the next theorem. 


THEOREM 6-7 (Mobius Inversion Formula). Let F and f be two 
number-tbeoretic functions related by tbe formula 


Kn) = Xf. 


Then 
Кп = Xu) rad) = Уши ЕЯ. 


din din 


Proof: The two sums mentioned in the conclusion of the theorem 

are seen to be the same upon replacing the dummy index d by d’ 

= n/d; as d ranges over all positive divisors of п, so does d'. 
Carrying out the required computation, we get 


OZ nan = Z(«o У 1o)- Z( E моло). 


din din eh (n/d) din 'ci(n/d) 


142 Number Theoretic Functions CHAPTER 6 


It is easily verified that d| n and c| (2/4) if and only if c| n and 
d| (n/c). Because of this, the last expression in (1) becomes 


Q >/( Z wane) - z( > дока) 


din’ с! (nf cin’ di (ne 


- x (до 2) ка). 


сіл PTS 


In compliance with Theorem 6-6, the sum Dare u(d) must 


vanish except when n/c = 1 (that is, when и = c), in which case 
it is equal to 1; the upshot is that the right-hand side of (2) sim- 
plifies to 


$ (ло $ ка) - xxo-i-59. 


cin" di (т/с) сеп 


giving us the stated result. 


Let us use я = 10 again to illustrate how the double sum in (2) 
is turned around. In this instance, we find that 


m ( > mafo) = aD) + (2), + Д5) + f090)] 


di "c! (10/4) 
+ (20001) + K5)) + OO) + Д2)] 
+ n(10)f(1) 
= ХИ) + в (2) + в (5) + 4090) 
+ Км а) + иб5)] + ХА) + 4(Q)] 
+ fa0)&) 
- X( Z лона), 


сіло ‘di (10/0) 


To see how Möbius inversion works in a particular case, we 
remind the reader that the functions т and с may both be described as 
“sum functions": 


t(n) = 1 and o(n) = X4. 


din din 


SECTION 6.2 The Möbius Inversion Function 143 


Theorem 6-7 tells us that these formulas may be inverted to give 
= Duln/dr(d) and n= Xu(n/de(d), 


din din 


valid for all п = 1. 

Theorem 6-4 insures that if fis a multiplicati»: 
is An) = У„„Ла). Turning the situation arc: 
whether the multiplicativé nature of F forces that ої f Surorisingly 
enough, this is exactly what happens. 


‘unction, then so 
, one (wight ask 


THEOREM 6-8. If F is a multiplicative function and 
Кп = DK, 


din 


then f is also multiplicative. 


Proof: Let m and п be relatively prime positive integers. We recall 
that any divisor d of mn can be uniquely written as d = d,d,, where 
d, | m, d, | n, and gcd (4,4,) = 1. Thus, using the inversion for: 
mula, 


fnm = X ве" zi 
- маа ( 2) 
bin 
-> ТОНІ ") r(ž) 
pia 


— ма") 2 ағ) = fint, 
dim Mal 


which is the assertion of the theorem. Needless to say, the multi- 
plicative character of u and of Fis crucial to the above calculation. › 


For n = 1, we define the sum 


M(n) = 5 a(k). 


k= 


144 Number Theoretic Functions CHAPTER 6 


Then M(n) is the difference between the number of square-free positive 
integers k € n with an even number of prime factors and those with an 
odd number of prime factors. For example, М(9) = 2 — 4 = —2. In 
1897, Franz Mertens (1840-1927) published a paper with a fifty-page table 
of values of M(n) for п = 1,2, --+ , 10,000. On the basis of the tabular 
evidence, Mertens concluded that the inequality 


| Ме! < vn, n>1, 


is “very probable.” (In the example above, | М) | = 2 < V9.) This 
conclusion later became known as the Mertens Conjecture. A computer 
search carried out in 1963 verified the conjecture for all пир to 10 bil- 
lion. But in 1984, Andrew Odlyzko and Herman te Riele showed that the 
Mertens Conjecture is false. Their proof, which involved the use of a 
computer, was indirect and produced no specific for which | M(») | 

= vyn; all it demonstrated was that such a number 7 has to exist some- 
where. Subsequently, it has been shown that there is a counterexample 
to the Mertens Conjecture for at least one 7 = (3.21)10**. 


PROBLEMS 6.2 


1. (a) For each positive integer п, show that 
u(n)u(n + Dula + 2)u(n + 3) = 0. 
(b) For any integer п = 5, show that ee * IO) = 1. 
2. The Mangoldt function A is defined by 


_ [log p, Ёп = pt, where p is a prime and k = 1 
A(n) = T 
0, otherwise 
Prove that A(n) = У) n (7/4) log d= — Ул „в (Я log d. [Hint: 
First show that Ул , A(d) = log mand then apply the Mobius In- 
version Formula.] i 
3. Let n = p," p," --- p," be the prime factorization of the integer 7 
2-1. If fis a multiplicative function, prove that 


У кала = а - fey) a = Kp)» -.. а - ЛР»). 


din 


[Hint: By Theorem 6-4, the function Е defined by An) = 
Dai „00079 is multiplicative; hence, Ат) is the product of the 


values Rp") Bi 


SECTION 6.3 The Greatest Integer Function 145 


4. 


Ifthe integer п > 1 has the prime factorization n = p," p,” . . - р, 
use Problem 3 to establish the following: 


(a) У в(дт(а = (—1); 


] 
din * 


(b) У u(dye(d) = (-1) pir «+: р; 
(O0 У ada = à - ура — Ир... à — Vp) 
(d $ 4009 = à - p) р) :::  — p). 


5. Let S(m) dénote the number of square-free divisors of n. Establish 


that 
S(n) = Уи |= 2 


din 
where ris the number of distinct prime divisors of n. (Hint: $ isa 
multiplicative function.] 


6. Find formulas for Уул „ #?(d)/r(d) and У), „ u'(d)/e(4) in terms 


of the prime factorization of п. 


7. The Liouville X-function is defined by \(1) = 1 and Хи) = 


(—1) * ^ * + if the prime factorization of n > 1 is n = 
b^ p,^ ... p". For instance, (360) = (2? - 32.5) = (—1)*? +1 
=(—1) = 1. 

(a) Prove that À is a multiplicative function. 

(b) Given a positive integer n, verify that 


= |1if n = m for some integer m 
Dro А otherwise 


din 


8. Ifthe integer’ 1 has the prime factorization п = p,^p;^ . . . p,", 


establish that Уул , u(d)X(d) = 2". 


6.3 THE GREATEST INTEGER FUNCTION 


The greatest integer or “bracket” function [ ] is especially suitable for 
treating divisibility problems. While not strictly a number-theoretic 
function, its study has a natural place in this chapter. 


Derinition 6-4. For an arbitrary real number x, we denote by [x] 
the largest integer less than or equal to х; that is, [x] is the unique 
integer satisfying x — 1 < [x] S x. 


146 Number Theoretic Functions CHAPTER 6 


By way of illustration, [ ] assumes the particular values 
[= 3/2] = — 2,102 = 1, [1/3] = 0, м] = 3, [77] = —4. 
The important observation to be made here is that the equality 


[x] = x holds if and only if x is an integer. Definition 6-4 also makes 
plain that any real number x can be written as 


х = (x) t 0 
for а suitable choice ef 0, with 0 = 0 < 1. 


We now plan to investigate the question of how many times a 
particular prime p appears in n!. For instance, if p = 3 and n = 9, then 


9 =1:2.3.4.5:6.7.8.9 
= 27.34.95 17, 


so that the exact power of 3 which divides 9! is 4. It is desirable to have 
a formula that will give this count, without the necessity of always writing 
п! in canonical form. This is accomplished by 


THEOREM 6:9. If n is a positive integer and p a prime, then the ex- 
ponent of the highest power of p that divides n! is 


D p^. 


i-i 


(This is not an infinite series, since [n/p] = 0 for p* > п.) 


Proof: Among the first n positive integers, those which are divisible 
by pare p, 2p,. . ., tp, where t is the largest integer such that р 
< n; in other words, t is the largest integer less than or equal to 
n/p (which is to say t = [7/p}). Thus, there are exactly [n/p] mul- 
tiples of p occurring in the product that defines n!, namely, 


(1) р, 2p, ...,[п”/Вр. 


The exponent of p in the prime factorization of n! is ob- 
tained by adding to the number of integers in (1), the number of 
integers among 1, 2, . . ., n which are divisible by р’, and then 
the number divisible by р», and so on. Reasoning as in the first para- 
graph, the integers between 1 and z that are divisible by f? are 


SECTION 6.3 The Greatest Integer Function 147 


(2) Pp, .. (VPP, 

which аге [n/p?] in number. Of these, [п/р] are again divisible by 
р: 1 

(3) 1? 2р... [ПИ]. 


After a finite number of repetitions of this process, we аге led to 
conclude that the total number of times р divides n! is 


te ИР. 


k= 


This result can be cast as the following equation, which usually 
appears under the name of Legendre's formula: 


n = Ie pnm 


psn 


Example 6-2 
We would like to find the number of zeroes with which the decimal 
representation of 50! terminates. In determining the number of 
times 10 enters into the product 50!, it is enough to find the ex- 
ponents of 2 and 5 in the prime factorization of 50!, and then to 


select the smaller figure. 
By direct calculation we see that 


[50/2] + [50/22] + [50/2] + [50/24] + [50/25] 
=125.+12+6+3 +1 = 47. 


Theorem 6-9 tells us that 2% divides 50!, but 2^ does not, Similarly, 
[50/5] + [50/52] = 10 +2 = 12 


and so the highest power of 5 dividing 50! is 12. This means that 
50! ends with 12 zeroes. 


We cannot resist using Theorem 6-9 to prove the following fact. 


THEOREM 6-10. Jf n and r are positive integers with 1 = r< n, then 
the binomial coefficient 


бы 


is also an integer. 


148 Number Theoretic Functions CHAPTER 6 


Proof: The argument rests on the observation that if a and В are 
arbitrary real numbers, then [2 + 6] > [a] + [b]: In particular, for 
each prime factor of p of r! (n — r)!, 


pup [rP + (00 = 9/00, #=1,2,.... 


Adding these inequalities together, we obtain 


(1) Dinz У 100 + 3 Ки – n/P. 
02. 1 21 kzı 

The left-hand side of (1) gives the exponent of the highest power 
of the prime р that divides т, whereas the right-hand side equals 
the highest power of this prime contained in r!(n — r)!. Hence, р 
appears in the numerator of n!/r!(m — r)! at least as many times as 
it occurs in the denominator. Since this holds true for every prime 
divisor of the denominator, r!( — r)! must divide n!, making 
nt/r!(n — r)! an integer. 


ConoLLARY. For a positive integer r, the product of any г consec- 
иное positive integers is divisible by ғ. с Pay 


Proof: The product of r consecutive positive integers, the largest 
of which is n, is 


n(n—1)(n—2)-..(n-rt1. 


Now we have 


nin 07 r0 (и. 


Since n!/r!(n — r)! is an integer, it follows that r! must divide the 
product n(n — 1) --- (n — r+ 1), as asserted. 


We pick up a few loose threads. Having introduced the greatest 
integer function, let us see what it has to do with the study of number- 
theoretic functions. Their relationship is brought out by 


THEOREM 6-11. Let fand Е be number-theoretic functions such that 


Кп) = Df. 


din 


SECTION 6.3 ‘The Greatest Integer Function 149 


Then, for any positive integer N, 


> An) =~ > КӘ. 


n=l a= 


Proof: We begin by noting that 


N N 
(1) MR) Ea. 
nml n@idin 
The strategy is to collect terms with equal values of f(d) in this 
double sum. For a fixed positive integer k = N, the term f(k) ap- 
pears in Dai „Ка if and only if k is a divisor of м: (Since each 


integer has itself as a divisor, the right-hand side of (1) includes 
f(k), at least once.) Now, in order to calculate the number of sums 
Dain fd) in which f(&) occurs as a term, it is sufficient to find 


the number of integers among 1, 2,. . . , N which are divisible by 
k. There are exactly [М/ of them: 
k, 2k, 3k, . . ., [N/k]k. 


Thus, for each k such that 1 < k = N, f(k) is a term of the sum 
Dain Kd) for [N/k] different positive integers less than or equal 


to N. Knowing this, we may rewrite the double sum in (1) as 


$ Zd = S KOMA 


and our task is complete. 


As an immediate application of Theorem 6-11, we deduce 


Сокоилвү 1. If N is a positive integer, then 


> t(n) = > [М1 


n=l n=l 


Proof: Noting that t(n) = У)» 1, we may write т for Fand take f 
to be the constant function f(n) = 1 for all я. 


In the same way, the relation o(n) = D)ain d yields 


150 Number Theoretic Functions CHAPTER 6 


Coroutary 2. If N is a positive integer, then 


> a(n) = > n{N/n). 


п 1 n"! 
These last two corollaries are perhaps clarified with an example. 


Example 6-3 
Consider the case N = 6. The results on page 128 tell us that 


6 
Ў 00) = 14. 
n=l 
From Corollary 1, 


> (6/n} = [6] +48} + [2] + 3/2) + (6/5) + Ш 


жби 14, 


as it should. In the present case, we also have 


6 
Ў a(n) = 33, 


while a simple calculation leads to 
6 
У ni6/n] = 16] + 23] + 302] + 4(3/2] + 56/5] + 61] 


=1.6+2.3+3.244.1+45.1146-1-= 33. 


PROBLEMS 6.3 


1. Given integers aand b> 0, show that there exists а unique integer 
rwith 0 = r< bsatisfying а = [a/b]b + r. : 
2. Let xand ybe real numbers. Prove that the greatest integer function 
satisfies the following properties: 
(a) [x + п] = [x] + nfor any integer n. 
(b) [x] + [7x] = 0 or —1, according as x is an integer or not. 
[Hint: Write x = [x] + 0, with 0 = 0 < 1, so that —x = 
-[x] — А 9)] 


SECTION 6.3 The Greatest Integer Function 151 


(с) [x] + [v] = [x + y] and, when x and y are positive, [x][y] 
= [xy]. 

(d) [x/n] = [[x]/n] for any positive integer п. [Hint: Let x/n 

i = [x/n] + 6, where 0 = 8 < 1; then [x] = n[x/n] + [n6].] 

(e) [nm/k] = n{m/k] for positive integers, п, т, k. 

(f) [x] + [y] + [x + y] S 2x] + [2]. [Hint: Let x = [x] + 0,0 
=0< 1, апау= [у] + #',0=# < 1. Consider cases in which 


neither, one, or both of 0 and 6 are greater than il 


3. Find the highest power of 5 dividing 1000! and the highest power 

of 7 dividing 20001. 
4. For an integer n = 0, show that [7/2] — [— 7/2] = n. 
5. (a) Verify that 1000! terminates in 249 zeros. 

(b) For what values of'n does n! terminate in 37 zeros? 
6. If nz landpis a prime, prove that 

(а) (2n)!/(n)? is an even integer. [Hint: Use induction on 7.] 

| (b) The exponent of the highest power of p which divides 
№ (2n)!/(n!)? is 


o 
У (25/00 — 2t/pp. 
k-1 
(c) In the prime factorization of (2m)!/(n!)? the exponent of any 
prime p such that n < p < 2n is equal to 1. 
7. Letthe positive integer n be written in terms of powers of the prime 
pso that n = a,p*+.-. + ap? + ар + a, where 0 S a, < p. 
Show that the exponent of the highest power of p appearing in the 
prime factorization of n! is 
n— lat. tata + а) 
р-1 j 
(a) Using Problem 7, show that the exponent of highest power 
of p dividing (p* — 1)! is [pt — (p — 1)k — 1)/(p — 1). Hint: 
Recall the identity 
p-i-(p-DQ-' ko tptptu) 
(b) Determine the highest power of 3 dividing 80! and the highest 
power of 7 dividing 2400!. [Hint: 2400 = 7* — 1] 
Find an integer n > 1 such that the highest power of 5 contained 
in n! is 100. [Hint: Since the sum of coefficients of the powers of 5 
needed to express 7 in the base 5 is at least 1, begin by considering 
the equation (п — 1)/4 = 100.] 


9 


152 Number Theoretic Functions CHAPTER 6 


10. Given a positive integer N, show that 


(a) У eMn) = 1; 


N 
(БЫТУ a/n = 1. 
п= 1 
11. Illustrate Problem 10 in the case N = 6. 
12. Verify that the formula 


N 
У нм] = [УМ 
n= 
holds for any positive integer N. [Hint: Apply Theorem 6-11 to 
the multiplicative function Ал) = Dain M4), noting that there 
are [М и] perfect squares not exceeding 7.] 
13. If Nisa positive integer, establish that 


(a) N= У 500 – У gn; 


n=. n=l 


(b) «(N) = У (N/n] — [N— 1/np. 


n= 


Euler’s 
Generalization 


of 
Fermat’s Theorem 


“Euler calculated 
without apparent effort, 
just as men breathe, 


as eagles sustain themselves 


in the air.” 


7.1 LEONHARD EULER 


The importance of Fermat's work resides, not so much in any contri- 
bution to the mathematics of his own day, but rather-in its animating 
effect on later generations of mathematicians. Perhaps the greatest dis- 
appointment of Fermat's career was his inability to interest others in his 
new number theory. A century was to pass before a first class mathe- 
matician, Leonhard Euler (1707-1783), either understood or appreci- 
ated its significance. Many of the theorems announced without proof by 
Fermat yielded to Euler's skill, and it is likely that the arguments devised 
by Euler were not substantially different from those which Fermat said 
he possessed. 

The key figure in 18th century mathematics, Euler was the son 
of a Lutheran pastor who lived in the vicinity of Basel, Switzerland. His 
father earnestly wished him to enter the ministry and, at the age of 13, 
sent his son to the University of Basel to study theology. There he came 
into contact with Johann Bernoulli—then one of Europe’s leading math- 
ematicians—and he befriended Bernoulli's two sons, Nicolaus and 
Daniel. Within a short time, Euler broke off the theological studies that 
had been selected for him in order to address himself exclusively to 
mathematics. He received his master’s degree in 1723 and in 1727, when 
he was only 19, won a prize from the Paris Academy of Sciences for a 
treatise on the most efficient arrangement of ship masts. 

Where the 17th century had been an age of great amateur math- 
ematicians, the 18th century was almost exclusively an era of profes- 
sionals—university professors and members of scientific academies. Many 
of the reigning monarchs delighted in regarding themselves as patrons 
of learning, and the academies served as the intellectual crown jewels 
of the royal courts. While the motives of these rulers may not have been 
entirely philanthropic, the fact remains that the learned societies con- 
stituted important agencies for the promotion of science. They provided 
salaries for distinguished scholars, published journals of research papers 
on a regular basis, and offered monetary prizes for scientific discoveries. 
Euler was at different times associated with two of the newly formed aca- 
demies, the Imperial Academy at St. Petersburg (from 1727 to 1741, and 


154 


SECTION 7.1 Leonhard Euler 155 


again, from 1766 to 1783) and the Royal Academy in Berlin (from 1741 
to 1766). In 1725, Peter the Great had founded the Academy of $t. Pe- 
tersburg and attracted a number of leading mathematicians to Russia, 
including Nicolaus and Daniel Bernoulli. On their recommendation an 
appointment was secured for Euler. Because of his youth, he had re- 
cently been denied a professorship in physics at the University of Basel 
and was only too ready to accept the invitation of the Academy. In Pe- 
tersburg, he soon came in contact with the versatile scholar Christian 
Goldbach (of the famous conjecture), a man who subsequently rose from 
professor of mathematics to Russian Minister of Foreign Affairs. Given 
his interests, it seems likely that Goldbach was the one who first drew 
Euler's attention to the work of Fermat on the theory of numbers. 

Euler eventually sickened of the political repression then ргеу- 
alent in Russia and accepted the call of Frederick the Great to become 
a member of the Berlin Academy. The story is told that, during a recep- 
tion at Court, he was kindly received by the Queen Mother who inquired 
why so distinguished a scholar should be so timid and reticent; he re- 
plied, “Madame, it is because I have just come from a country where, 
when one speaks, one is hanged.” Flattered by the warmth of the Rus- 
sian feeling towards him, however, and unendurably offended by the 
contrasting coolness of Frederick and his court, Euler returned to Pe- 
tersburg in 1766 to spend his remaining days. Within two or three years 
of his going back, Euler had the misfortune to become totally blind. 

However, Euler would not permit blindness to retard his sci- 
entific work; aided by a phenomenal memory, his writings grew to such 
enormous proportions as to be virtually unmanageable. Without a doubt, 
Euler was the most prolific writer in the entire history of mathematics. 
He wrote or dictated over 700 books and papers in his lifetime, and left 
30 much unpublished material that the St. Petersburg Academy did not 
finish printing all his manuscripts until 47 years after his death. The pub- 
lication of Euler's collected works was begun by the Swiss Society of 
Natural Sciences in 1911 and it is estimated that more than 75 large vol- 
umes will ultimately be required forthe completion of this monumental 
project. The best testament to the quality of these papers may be the fact 
that on twelve occasions they won the coveted biennial prize of the 
French Academy in Paris. 

During his stay in Berlin, Euler acquired the habit of writing 
memoir after memoir, placing each when finished at the top of a pile of 
manuscript. Whenever material was needed to fill the Academy's journal, 
the printers would help themselves to a few papers from the top of the 


156 Euler's Generalization of Fermat's Theorem CHAPTER 7 


stack. As the height of the pile increased more rapidly than the demands 
made upon it, memoirs at the bottom tended to remain in place a long 
time. This explains How it happened that various papers of Euler were 
published, while extensions and improvements of the material con- 
tained in them had previously appeared in print under his name. We 
might also add that the manner in which Euler made his work public 
contrasts sharply with the secrecy customary in Fermat's time. 


7.2 EULER’S PHI-FUNCTION 


The present chapter deals with that part of the theory arising out of the 
result known as Euler’s Generalization of Fermat’s Theorem. In a nut- 
shell, Euler extended Fermat’s Theorem, which concerns congruences 
with prime moduli, to arbitrary moduli. While doing so, he introduced 
an important number-theoretic function, described as follows: 


DEFINITION 7-1. For n > 1, let ¢() denote the number of positive 
integers not exceeding я that are relatively prime to n. 


As an illustration of the definition, we find that $(30) = 8; for, 
among the positive integers that do not exceed 30, there are eight which 
are relatively prime to 30; specifically 


1, 7, 11, 13, 17, 19, 25, 29. 
Similarly, for the first few positive integers, the reader may check that 


$(1) = 1, $(2) = 1, (3) = 2, &(4) = 2, 
$(5) = 4, $(6) = 2,$(7) = 6,.... 


Notice that ¢(1) = 1, since gcd(1, 1) = 1. While if 2 1, then 
gcd(n, п) = n + 1, so that $(п) can be characterized as the number 
of integers less than nand relatively prime to it. The function $ is usually 
called the Euler pbi-function (sometimes, the indicator or totient) after 
its originator; the functional notation (7), however, is credited to Gauss. 

If na prime number, then every integer less than 7 is relatively 
prime to it; whence, ¢(m) = n — 1. On the other hand, if n > 1 is com- 
posite, then 7 has a divisor d such that 1 < d < n. It follows that there 
are at least two integers among 1, 2, 3, . . ., n which are not relatively 
prime to n, namely, dand n itself. Asa result, ф(п) = n — 2. This proves: 
for n > 1, 


SECTION 7.2 Euler’s Phi-Function 157 


The first item on the agenda is to derive a formula that will allow 
us to calculate the value of (7) directly from the prime-power facto- 
rization of n. A large step in this direction stems from 


THEOREM 7-1. Jf p is a prime and k > 0, then 
eqep-p-pa-up. 


Proof: Clearly, gcd(7, p? = 1 if and only if p / п. There are р' 
integers between 1 and p* which are divisible by p, namely 


p, 2p, Зр,. . · QI OP. 


Thus, the set {1, 2, . . . , ^] contains exactly p — p~’ integers 
which are relatively prime to p*and so, by the definition of the phi- 


function, (p*) = p* — p’. 


For an example, we have 
$(9) 290) = 37-3 = 6; 
the six integers less than and relatively prime to 9 are 1, 2, 4, 5, 7, 8. То 
give a second illustration, there are 8 integers which are less than 16 and 
relatively prime to it, to wit, 1,3, 5, 7, 9, 11, 13, 15. Theorem 7-1 yields 
the same count: 


$6) = (24) = 2* — 23 =16 — 8 = 8. 


We now know how to evaluate the phi-function for prime powers 
and our aim is to obtain a formula for ф(п) based on the factorization of, 
nas a product of primes. The missing link in the chain is obvious: show 
that ¢ is a multiplicative function. We pave the way with an easy lemma 


LEMMA. Given integers а, b, ©, gcd(a , bc) = 1 if and only if 
gcd(a, b) = 1 and gcd(a , с) = 1. 


Proof: Suppose first that gcd(a, bc) = 1 and put d= gcd(a, b). 
Then d| a and d|b, whence d | а and 41 bc. This implies that 
gcd(a , bc) = d, which forces d — 1. Similar reasoning gives rise 
to the statement gcd(a , c) = 1. 

For the other direction, let gcd(a, b) =1= gcd(a, c) and 
assume that gcd(a, bc) = d, > 1. Then d, must have a prime divi- 
sor p. Since d, | bc, it fallows that p| bc; in consequence, plbor 
pl c. If pl b, then (by virtue of the fact that pl а) gcd(a, b) = p, a 


158 Euler's Generalization of Fermat's Theorem CHAPTER 7 


contradiction. In the same way, the condition p| c leads to the 
equally false conclusion that gcd(a , c) 2 p. Thus d, = 1 and the 
lemma is proven. 


THEOREM 7-2. Тре function ф is a multiplicative function. 


Proof: It is required to show that 6( mn) = $(т)ф(п), wherever т | 
and я have no common factor. Since $(1) = 1, the result obviously 

holds if either m or n equals 1. Thus we may assume that m > 1 

and n > 1. Arrange the integers from 1 to mn in m columns of n 

integers each, as follows: 


1 2 А r Ie m 
ml m+2 m+r 22m 
2m t 1 2m t 2 2m t ғ 3m | 
| 
(n-1)m+1 (n-—1)m+2 (n—1)m-ctr nm | 


We know that ¢( mm) is equal to the number of entries in the above 
array which are relatively prime to mn; by virtue of the lemma, this 
is the same as the number of integers which are relatively prime to 
both mand n. 

Before embarking on the details, it is worth commenting 
on the tactics to be adopted: Since ged(qm + r, т) = gcd(r, т), 
the numbers in the rth column are relatively prime to m if and only 
if r itself is relatively prime to m. Therefore, only ¢(m) columns 
contain integers relatively prime to m, and every entry in the column 
will be relatively prime to m. The problem is one of showing that 
in each of these $( т) columns there are exactly ¢(n) integers which 
are relatively prime to n; for then there would be altogether 
$(m)¢(n) numbers in the table which are relatively prime to both 
m and n. 

Now the entries in the rth column (where it is assumed 
that gcd(r, m) — 1) are 


nmtrn2mctr...,(n—1)mccr. 


There are 7 integers in this sequence and no two are congruent 
modulo п Indeed, were 


km t rz jm + т (mod п) 


ЗЕСПОМ 7.2 Euler's Phi-Function 159 


with 0 = k < j < n, it would follow that km = jm (mod n). Since . 
gcd(m , п) = 1, we could cancel т from both sides of this con- 
gruence to arrive at the contradiction that k= j (mod п). Thus, the 
numbers in the rth column are congruent modulo 7 to 0, 1, 2, 

., ^ — 1, in some order. But if s= t (mod n), then gcd(s, n) 
= 1 if and only if gcd(t, п) = 1. The implication is that the rth 
column contains as many integers which are relatively prime to п 
as does the set | 0, 1,2,. . ., n — 1}, namely, ó() integers. There- 
fore, the total number of entries in the array that are relatively prime 
to both m and n is $(т)ф(п). This completes the proof of the 
theorem. 


With these preliminaries in hand, we can now prove 
THEOREM 7-3. If the integer n > 1 bas the prime factorization n 
= рр... р, then 

$(n) = (p^ — p^ : (p рт «(rr p) 
n(1 — p) — Mp) --- à — Vp). 


Proof: We intend to use induction on 7, the number of distinct prime 
factors of n. By Theorem 7-1, the result is true for r = 1. Suppose 
that it holds for r = i. Since 
gcd(p,^p,h «++ p^, pst) = 1, 

the definition of multiplicative function gives 

ФСС“ "DU POP. + igi By ore o(p" Las ридф! + di ) 

= ep --+ p) 
(D+ nut Us pre P AN Dy; 


Invoking the induction assumption, the first factor on the right-hand 
side becomes 


Фрер... p!) = (p — p^ Эф: р? 7") Ad 
eh рТ) 


and this serves to complete the induction step, as well as the proof. 


160 Euler's Generalization of Fermat's Theorem CHAPTER? | 


Example 7-1 
Let us calculate the value (360), for instance. The prime-power 
decomposition of 360 is 2? - 3? - 5, and Theorem 7-3 tells us that 


$360) = 360 – Da - 3) - 5) 


The sharp-eyed reader will have noticed that, save for Ф(1) and 
$(2), the values of ф(т) in our examples are always even. This is no 
accident, as the next theorem shows. 


THEOREM 7-4. For n > 2, $(п) is an even integer. 


Proof: First, assume that ә is a power of 2, let us say п = 2*, with 
k z 2. By Theorem 7-3, 


o(n) = o(24) = 24 — 4) = 24-3, 


an even integer. If n does not happen to be a power of 2, then it is 
divisible by an odd prime p; we may therefore write nas n = p*m, 
where k = 1 and gcd(p*, т) = 1. Exploiting the multiplicative 
nature of the phi-function, one gets 


Фп) = ф(рдФСт) = p^ - Xp — DéCm, 


which is again even since 2| p — 1. 


We can establish Euclid's Theorem on the infinitude of primes 
in the following new way: As before, assume that there are only a finite 
number of primes. Call them p, р. ..,Р» and consider the integer п 
= рр, ++ p- We argue that if 1 < a = m, then gcd(a, п) * 1. For, the 
Fundamental Theorem of Arithmetic tells us that а has a prime divisor . 
q. Since р, Po, - . - p, are the only primes, q must be one of these р» — 
whence 41 n; in other words, gcd(a , п) = 4. The implication ofallthis ' 
is that ¢(n) = 1, which is clearly impossible by Theorem 7-4. 


PROBLEMS 7.2 
1. Calculate (1001), $(5040), and $(36,000). 


2. Verify that the equality &() = (9 + 1) = $(п + 2) holds when | 
п = 5186 


SECTION 7.2 Euler’s Phi-Function 161 


3. Show that the integers m = 3* - 568 and n = 3*. 638, where k = 


10 


0, satisfy simultaneously 
т(т) = т(п), в(т) = о(т), $(т) = Фп). 


Establish each of the assertions below: 
(a) If nis an odd integer, then ¢(2n) = ф(п). 
(b) If n is an even integer, then $(2п) = 2ф(п). 
(с) (3n) = 36(n) if and only if 31 n. 
(d) $n) = 26(n) if and only if 3 п. 
(e) (n) = n/2 if and only if n = 2* for some k= 1. (Hint: Write 
n = 2*N, where Nis odd, and use the condition o(n) = n/2 
to show that М = 1.] 
Prove that the equation $(») = d(n + 2) is satisfied by п 
= 2(2p — 1) whenever pand 2p — 1 are both odd primes. 
Show that there are infinitely many integers п for which $(n) is а 
perfect square. [Hint: Consider the integers n = 2**" for k = 1,2, 


. Verify the following: 


(a) Forany positive integer n, Vn = $(п) = n. [Hint; Write n 


= 2*p^ «pls sog(n) = 2 ph «pi^ (n 1) 
(p. — 1). Now use the inequalities p — 1 > 


Vp and в — += k/2 to obtain фт) = 2^7 pi 0! 


2 

(b) Ifthe integer n > 1 has r distinct prime factors, then ф(т) = 
n/2*. 

(c) If n» 1isacomposite number, then $(и) = n = yn. Hint: 
Let p be the smallest prime divisor of n, so that p = yn. Then 
$(п) = ва — ИР] 

Prove that if the integer n ћаѕ r distinct odd prime factors, then 


27| en). 


. Prove that: 


(a) If n and n + 2 are a pair of twin primes, then $(n + 2) 
= ф(п) + 2; this also holds for n = 12, 14, and 20. 

(b) If p and 2p + 1 are both odd primes, then я = 4p satisfies 
o(n + 2). = 4(m +2. 

If every prime that divides п also divides т, establish that ¢(nm) 

= пф(т); in particular, (т) = no(n) for every positive integer 

n. 


162 


1 


= 


12. 


13. 


14. 


15. 


16. 


17. 


18. 


19. 


Euler's Generalization of Fermat's Theorem CHAPTER 7 


(a) If ¢(m) | n — 1, prove that л is а square-free integer. [Hint: 
Assume that 7 has the prime factorization n = p," p," . . . р,", 
where k, > 2. Then p,| (7), whence р, | п — 1, which leads 
to a contradiction.] 

(b) Show that if я = 2*or 2*3/, with kand j positive integers, then 
oln) | п, 

If n = рр, ... p/", derive the inequalities 

(а) а(т)ф(п) = PA — 1p?) — 1/p?) --- (1 — 1/p2), and 
(b) т(т)ф(п) = n. (Hint: Show that r(n)ó(n) = 2 - п(1/2)"] 
Assuming that d| n, prove that ф(4) | $(п). [Hint: Work with the 
prime factorizations of d and л.] 

Obtain the following two generalizations of Theorem 7-2: 

(a) For positive integers m and n; 


Ф(т)ф(п) = Ф(тп)ф(а)/а, 


where d = gcd(m, п). 
(b) For positive integers m and n, 


Ф(т)ф(п) = ф(вса(т , п))фАст(т , n)). 


Prove that: 
(a) There are infinitely many integers л for which ф(л) = n/3. 
(Hint: Consider я = 2*3/, where kand jare positive integers.] 
(b) There are no integers n for which ¢(n) = n/4. 
Show that Goldbach’s Conjecture implies that for each even integer 
2n there exist integers 7, and m, with $(»,) + (m) = 2n. 
Given a positive integer k, show that 
(a) there are at most a finite number of integers л for which ¢(7) 
= k; 
(b) ifthe equation ф(л) = k has a unique solution, say n = 7 
then 4| n». [Hint: See Problem 4(a) and 4(b).] 
A famous conjecture of Carmichael is that the number of solutions 
of ¢(m) = k cannot be equal to one. 
Find all solutions of ¢(m) = 16 and (n) = 24. (Hint: If n 
= рир, --. p, satisfies $(n) = k, then n = [&/II(p, — 1)] Пр, 
Thus the integers d, = p, — 1 can be determined by the conditions 
(1) 41А, (2) а, + 115 prime and (3) k/Ild; contains no prime factor 
not in Пр,] 
(a) Prove that the equation ф(я) = 2p, where p is a prime'number 
and 2p + 1 is composite, is not solvable. 


SECTION 7.3 Euler's Theorem Ys 163 


(b) Prove that there is no solution to the equation $(7) = 14, and 
that 14 is the smallest (positive) even integer with this prop- 
erty. 

20. If pis a prime and k > 2, show that $(¢(p*)) = p*-^$((p — 1)?). 


7.3 EULER'S THEOREM 


As remarked earlier, the first published proof of Fermat's Theorem (that 
@~'=1 (mod p) if p X а) was given by Euler in 1736. Somewhat later, 
in 1760, he succeeded in generalizing Fermat's Theorem from the case 
of a prime p to an arbitrary integer я. This landmark result states: if 
gcd(a, n) = 1, then g*" = 1 (mod n). 

For example, putting 2 = 30 and а = 11, we have 


11900 == 118 == (112) == (121)* = 1* = 1. (mod 30). 


As a prelude to launching our proof of Euler's Generalization of 
Fermat's Theorem, we require a preliminary lemma. 


LEMMA. Let п > 1 and gcd(a, n) = 1. Га, а. . ., ам» are the 
positive integers less tban n and relatively prime to n, tben 


аа ва» ©., HQ 


are congruent modulo n to а, а... ., ам» т some order. 


Proof: Observe that no two of the integers аа,, 445, . . ., аа, are 
congruent modulo n. For if аа, = aa, (mod n), with 1 S i< jS 
Ф(п), then the cancellation law yields a, = a, (mod n), a contra- 
diction. Furthermore, since gcd(a,, n) = 1 for all and gcd(a, n) 
= 1, the lemma on page 137 guarantees that each of the aa, is rel- 
atively prime to 7. 

Fixing on a particular aa,, there exists a unique integer 5, 
where 0 = b < n, for which aa, = b (mod n). Because 


gcd(b, п) = gcd(aa,, п) = 1, 


b must be one of the integers 4,, 2,,. . ., Як»). All told, this proves ` 
that the numbers aa,, 44; . . . , аа» and the numbers æ, &, 
. , Ayım are identical (modulo я) in a certain order. 


164 Euler's Generalization of Fermat's Theorem CHAPTER? 


THEOREM 7-5 (Euler). If 1 is a positive integer and gcd(a , п) 
= 1 then а%” = 1 (mod п). 


Proof: There is no harm in taking п > 1. Let 4, An. . ., Gem be 
the positive integers less than л which are relatively prime to n. 
Since gcd(a , п) = 1, it follows from the lemma that aa, aa, 

., ааз) аге congruent, not necessarily in order of appearance, 
tO а, 45 . . ., ар. Then 


aa, = d, (mod n), 


аа, = a, (mod n), 


аам = Gym (mod т), 


where aj, а, . . ., Gm are the integers 4, 45 . . ., Agim in some 
order. On taking the product of these ф(л) congruences, we get 


(аа) (aay) +++ (Aas) = did; +++ Gym (mod n) 
= да, +++ Gym (mod n) 
and so 
a* (ayy +++ Agim) = аа, += + Gm (mod n). 


Since gcd(a,, n) = 1 for each 7, the lemma preceding Theorem 
7-2 implies that gcd (4,4, «++ ар, п) = 1. Therefore we may divide 
both sides of the foregoing congruence by the common factor 
4,0; *** 4g, leaving us with 


a*m = 1 (mod п). 
This proof can best be illustrated by carrying it out with some 


specific numbers. Let n = 9, for instance. The positive integers less than 
and relatively prime to 9 are 


1, 2-475: 1:8. 


These play the role of the integers а, 4, . . . , Asm in the proof of 
Theorem 7-5. If a = —4, then the integers aa, are 


-54,::38,:.—16, 207928) 32; 
where, modulo 9, 


—4=5, -8 = 1, -16=2, —20 =7, —28 = 8, —32 = 4. 


SECTION 7.3 Euler's Theorem A 165 


When the above congruences are all multiplied together, we obtain 
(—4)(—8)(—16)(—20)(—28)(—32) 25 -1 - 2. 7 - 8: 4 (mod 9), 
which becomes 
0-2.4.5.7.8(—-452(1-2-4-5-7- 8) (mod9). 


Being relatively prime to 9, the six integers 1, 2, 4, 5, 7, 8 may be suc- 
cessively cancelled to give 


(—4) = 1 (mod 9). 
The validity of this last congruence is confirmed by the calculation 
(— 4) = 46 = (64)? = 1? = 1 (mod 9). 


Note that Theorem 7-5 does indeed generalize the one due to 
Fermat, which we proved earlier. For if p is a prime, then ¢(p) = 
р — 1; hence, whenever gcd(a, р) = 1, we get 


ap - 1e a*%ń = 1 (mod p) 


and so: 


Coro.tary (Fermat). If p is a prime and p | a, then 
ar- = 1 (mod p). 

Example 7-2 
Euler's Theorem is helpful in reducing large powers modulo я. To 
cite a typical example, let us find the last two digits in the decimal ' 
representation of 3^6 this is equivalent to obtaining the smallest 
nonnegative integer to which 37% is congruent modulo 100. Since 
gcd(3,100) = 1 апа 


(100) = $(2? - 5?) = 10011 — 2) - 3) = 40, 
Euler’s Theorem yields 
3 = 1 (mod 100). 
By the Division Algorithm, 256 = 6 - 40 + 16; whence 
3256 = 36 + 40 + 16 = (540)6316 = 316 (mod 100) 


and our problem reduces to one of evaluating 3°, modulo 100. The 
calculations are as follows, with reasons omitted: 


316 = (81) = (—19)* = (361)? = 61? = 21 (mod 100). 


166 Euler's Generalization of Fermat's Theorem CHAPTER 7 


There is another path to Euler’s Theorem, one which requires 
the use of Fermat's Theorem. 


Second Proof of Euler's Theorem: To start, we argue by induction 
that if p / a (pa prime), then 
(1) a) == 1 (mod p^), > 0. 


When k = 1, this assertion reduces to the statement of Fermat's 
Theorem. Assuming the truth of (1) for a fixed value of k, we wish 
to show that it is true with А replaced by k + 1. 

Since (1) is assumed to hold, we may write 


ar = 1 + gp 
for some integer q. Notice too that 
P+ = piti pre pp — ph) = pio). 
Using these facts, along with the Binomial Theorem, we obtain 
quot * = а 
= (1 + qp» 
1+ (2) сао + (Day + 
+(,,2 еее amy 
mc (2) ао (mod p** 1). 
But 21 (0) and so p**"| (4) (4р). Thus, the last-written congruence 
becomes 
аб * D = 1 (mod p + », 


completing the induction step. 

Now let gcd(a, n) = Тапа я have the prime factorization 
n= pi" p? --- рі. In view of what has already been proved, each 
of the congruences 
(2) go ui (mod p), d DC ал 
holds. Noting that $(7) is divisible by ¢(p,"), we may raise both 
sides of (2) to the power $()/#(p;") and arrive at 


а%"% = 1 (mod p^), peu x 


SECTION 7.3 Euler's Theorem 167 


Inasmuch as the moduli are relatively prime, this leads us to the 
relation Е 


аё" = 1 (mod pip” els p^) 


or а%" = 1 (mod n). 


The usefulness of Euler's Theorem in number theory would be 
hard to exaggerate. It leads, for instance, to à different proof of the 
Chinese Remainder Theorem. In other words, we seek to establish that 
if gcd(z,, n) = 1 for i # j, then the system of linear congruences 


x= a, (mod n), ET UL PR SHUT y 
admits a simultaneous solution. Let n= mmh +++ n, and put N, — n/n, 


forn-1,2,.. ., r. Then the integer 


= a NA + a NÉ + + a NT 


fulfills our requirements. To see this, first note that № = 0 (mod n) 
whenever і # j; whence, 


x= aN”? (mod n). 
But, since gcd(N,, п) = 1, we have 


No"? = 1 (mod n) 


and so x = a, (mod n) for each #. 

As a second application of Euler's Theorem, let us show that if 
nis an odd integer which is nota multiple of 5, then л divides an integer 
all of whose digits are equal to 1. (For example: 7 | 111111) Since 
gcd(n, 10) = 1 and gcd (9, 10) = 1, we have gcd(97, 10) = 1. Quoting ' 
Theorem 7-5 again, 

1099» = 1 (mod 97). 
This says that 1099? — 1 = 9nk for some integer k or, what amounts to 
the same thing, 
10909» — 1 


kn = 9 у 


The right-hand-side of the above expression is an integer whose digits 
are all equal to 1, each digit of the numerator being clearly equal to 9. 


168 


Euler's Generalization of Fermat's Theorem CHAPTER 7 


PROBLEMS 7.3 


1. 


4 


Use Ешег'ѕ Theorem to establish the following: 
(a) For any integer a, A T a (mod 1729). 
[Hint: 1729 = 7 - 19.] 
(b) For any integer a, a = a (mod 2730). 
[Hint: 2730 22-3. 5.7. 13] 
(c) For any odd integer a, a? = a (mod 4080). 
[Hint: 4080 = 15 - 16 - 17] 
Use Euler's Theorem to confirm that, for any integer n = 0, 
51109 9— 7, 
Prove that 21° — 2? divides a'5 — а for any integer а. 
[Hint: 2 — 2 = 5.7.8.9. 13] 
Show that if gcd(a, п) = gcd(a — 1, n) = 1, then 
lc acd +... + a* -1=0 (mod n). 
(Hint: Recall that 
Gare = Cail) (aste UR weet ee eg + 1. 
If mand mare relatively prime positive integers, prove that 
me” + nèm = 1 (mod mn). 
Fill in any missing details in the following proof of Euler’s Theorem: 
Let p be a prime divisor of n and gcd(a , р) = 1. By Fermat's 
Theorem, a^- ! = 1 (mod р), so that а”-! = 1 + tp for some t. 
Then a>) = (1 + pe = 1 + (op) + ... + (pyr =1 
(mod 3) and, by induction, a^^ 'e- » = 1 (mod m where k = 
2, . Raise both sides of this congruence to the 
$(n)/p' '(p — 1) power to get a*™ = 1 (mod p^). Thus a”) = 
1 (mod n). 
Find the units digit of 3! by means of Euler's Theorem. 
(а) If gcd(a , n) = 1, show that the linear congruence ax = b 
(mod n) has the solution x == ba* -! (mod т). 
(b) Use part (а) to solve the congruences 3x == 5 (mod 26), 13x 
= 2 (mod 40) and 10x = 21 (mod 49). 


Prove that every prime other than 2 or 5 divides infinitely many of 
the integers, 1, 11, 111, 1111,. . . . 


a > 


SECTION 7.4 Some Properties of the Phi-Function 169 


10. For any prime p, establish each of the assertions below: 
(а) т(р!) = 27((p = DY; 
(b) e(p) = (p 1) «((p — DY; 
(с) Ф) = (p — DA — 09. 

11. Given n= 1, a set of ¢(m) integers which are relatively prime to м 
and which are incongruent modulo я is called a reduced set of res- 
idues modulo n (that is, a reduced set of residues are those mem- 
bers of a complete set of residues modulo n which are relatively 


prime to 7). 
Verify that Е 
(a) the integers —31, —16, —8, 13, 25, 80 form a reduced set of 
' — residues modulo 9; 
(b) the integers 3, 3°, 3°, 3*, 3°, 35 form a reduced set of residues 
modulo 14; i 
(c) the integers 2, 2%, 25,. . ., 2" forma reduced set of residues 
modulo 27. 
12. If pis an odd prime, show that the integers 
pal p-1 
p mU e а WS АЕ 2 


form a reduced set of residues modulo p. 


7.4 SOME PROPERTIES OF THE PHI-FUNCTION 


"The next theorem points out a curious feature of the phi-function; namely, 
that the sum of the values of $(d), as d ranges over the positive divisors 
of n, is equal to я itself. This was first noticed by Gauss. 


THEOREM 7-6 (Gauss). For each positive integer n = 1, 
n= Dod), 


din 
the sum being extended over all positive divisors of n. 
Proof: The integers between 1 and п сап.Ъе separated into classes 


as follows: if d is a positive divisor of n, we put the integer т in 
the class 5, provided that вса(т, n) = d. Stated in symbols, 


5, = [mlgcd(m, п) = 41=т= п). 


170 Euler's Generalization of Fermat's Theorem CHAPTER 7 


Now gcd(m , n) = dif and only if gcd(m/d, n/d) = 1. Thus the 
number of integers in the class 5,13 equal to the number of positive 
integers not exceeding n/d which are relatively prime to n/d; in 
other words, equal to ¢(2/d). Since each of the n integers in the 
set {1,2,. . ., n} lies in exactly one class S,, we obtain the formuta 


n= >9(n/d). 


din 


But as d runs through all positive divisors of я, so does. n/ d; 
hence, 


X904 = Уа 


din din 


and the theorem follows. 


Example 7-3 
A simple numerical example of what we have just said is provided 
by n = 10. Here, the classes.$, are 


$ = [1,3, 7, 9], 
5 = 2,4, 6, 8], 
$ = [5], 
S, = [10]. 
These contain ф(10) = 4, ф(5) = 4, $(2) = 1, and ф(1) = 1 in- 


tegers, respectively. Therefore, 


Dod) = (10) + $(5) + 62) + $) 


diio 


=4+4+1+1= 10. 


It is instructive to give a second proof of Theorem 7-6, this one 
depending on the fact that ¢ is multiplicative. The details are as follows: 
If n = 1, then clearly 


DH = Dold = 60) =1= n: 
dil 


din 
Assuming that n > 1, Jet us consider the number-theoretic function 
Rn) = Dold). 


din 


ЕЕРЕЕ 


SECTION 7.4 Some Properties of the Phi-Function 171 


Since ф is known to be a multiplicative function, Theorem 6-4 asserts 
that Fis also multiplicative. Hence, if п = p,"'p,” -.- p," is the prime 


factorization of n, then 
Fn) = Fp") Ks?) --- Fp). 
For each value of i, 


Rp?) = У, $9 


dip, 
= $1) + Ф(р) + Ф?) + Ф?) + + + ФГ) 
=1+(@,-1)+ (фр) + (p? — р?) 
+... + (ph рТ") 
= pr, 
since the terms in the foregoing expression cancel each other, save for 
the term p. Knowing this, we end up with 


F(n) = p^p^ gh ри= n 
and so 


n= Ded, 


din 


as desired. 
We should mention in passing that there is another interesting 


identity which involves the phi-function. 


THEOREM 7-7. For n > 1, the sum of the positive integers less than 
n and relatively prime to n is+np(n); in symbols, 

1 = 

=no(n) > k. 


gcd hn) = 1 
1=а<п 


Proof: Let а, Gy) - + арт be the positive integers less than м and 
relatively prime to я. Now, since gcd(a, п) = 1 if and only if 
gcd(n — a, n) = 1, we have 
a tat ++ + ayn T (п a) + (п- а) 
+... + (9 - Sem) 
= ф(п)п — (a, t+ a + +++ + ан). 


172 Euler's Generalization of Fermat's Theorem CHAPTER 7 


Hence, 
2(а +a +... + Gsm) = é(n)m, 
leading to the stated conclusion. 


Example 7-4 


Consider the case п = 30. The $(30) = 8 integers which are less 
than 30 and relatively prime to it are 


1, 7, 11, 13, 17, 19, 23, 29. 


In this setting, we find that the desired sum is 


1+7 +11 + 13 + 17 +19 +23 +29 = 120= 4. 30 . 8. 


This is a good point at which to give an application of the Móbius 
Inversion Formula. 


THEOREM 7-8. For any positive integer n, 


Фп) = n Duld)/a. 


din 


, Proof: The proof is deceptively simple: If one applies the inversion 
formula to 


Kn = п= X4, 
the result is 
oln) = Yu(d)F(n/d) = Ува п/а. 


din din a“ 


Let us illustrate the situation with я = 10 again. As can easily 
be seen, 


10 2, u(d)/d = 10а) + w(2)/2 + u(5)/5 + n(10)/10] 


dio 


= 101 + (—1)/2 + (—1)/5 + (—1)2/10] 
= 101 — 1/2 — 1/5 + 1/10] = 10. 2/5 = 4 = $4 (10). 


SECTION 7.4 Some Properties of the Phi-Function —  . 173 


Starting with Theorem 7-8, it is an easy matter to determine the 
value of the phi-function for any positive integer я. Suppose that the 
prime-power decomposition of n is n = риф," -- - р, тапа consider ће 
product 


P= Па) + (p, -+ + ар /р/). 


Pin 
Multiplying this out, we obtain a sum of terms of the form 


uDU up, --- KP DIPA ++ p^ 0 <a, = k 
or, since y is known to be multiplicative, 

Mlp" p? ++ pp? pg? + -- p” = w(d)/d, 
where the summation is over the set of divisors d = p," p," --- р." of 


n. Hence, P = Da „ u( d)/d. It follows from Theorem 7-8 that 


$(n) = n Duld/d = n JJ UO) + адр, + --- + едр). 


din min 


But и(р^) = 0 whenever a, > 2. As a result, the last-written equation 
reduces to 


o(n) = n II (HQ) + 0р = n IE G = УР, 


DIE min 


which agrees with the formula established earlier by different reasoning. 
What is significant about this argument is that no assumption is made 
concerning the multiplicative character of the phi-function, only of p. 


PROBLEMS 7-4 


1. Fora positive integer n, prove that 
0 if n is even 


аи = арто оаа 


ain 
[Hint: If п = 24N, where N is odd, then У) „(-1)"4 (9 
= Xas-weé(4) — Da nld] 
2. Confirm that Ул é(d) = 36 and Dara (—1)%(4) = 0. 
3. For a positive integer n, prove that Dain n'(d)/é(d) = п/п). 
(Hint: See the hint in Problem 1.] 


174 Euler's Generalization of Fermat's Theorem CHAPTER 7 


4. Use Problem 3, Section 6.2, to give a different proof of the fact that 
n $ju(d)/d = é(n). 


din 


5. Ifthe integer п > 1 has the prime factorization n = p," p? ... p,", 
establish the following: 


(a) Ун(а%(0) = 2 — p) — р) --- (2 — р) 


pet +1 pret +1 
$ Xeno - (5512) (57917) 
(2+1) 
р. +1 
LACH T kb; m 
(c) Z«o/as (1.59.9) (1489) 
ar EE 
D. 


[Hint: For part (a), use Problem 3, Section 6-2.] 

6. Verify the formula Уу" 6(d)[n/d] = n(n + 1)/2 for any posi- 
tive integer n. [Hint: This is a direct application of Theorems 6-11 
and 7-6.] 

7. If n is a square-free integer, prove that Уу „o(d - ')¢(d) = п“ for 
all integers k > 2. 

8. Fora square-free integer n > 1, show that r(*) = n if and only if 
8197 

9. Prove that 3 | о (3п + 2) and 4|o(4n + 3) for any positive integer 
n. 

10. (a) Given k> 0, establish that there exists a sequence of k con- 

secutive integers n + 1, n + 2,. .., n + ksatisfying 
u(n + 1) = u(n 2) — ...— p(n + k) = 0. 

[Hint: Consider the system of linear congruences 

x= —1 (mod 4), x= —2 (тоа9),..., 
a x= —k (mod p?) 
where p, is the Ath prime.] 
(b) Find four consecutive integers for which y(n) = 0. 


SECTION 7.5. An Application to Cryptography 175 


11. Prove the statements below: 
(a) An integer п is prime if and only if o(m) + ¢(n) = пт(п). 
(Hint: First derive the relation Da no(d)o(n/d) = пт(п).] 


(b) An integer n is prime if and only if ¢(7) | n — 1 and also 
n + 1|o(n). [Hint: See Problem 11(a), Section 7-2.] 
12. For n > 2, establish the inequality ф( и?) + é(( + 1)?) = 2m. 
13. Given an integer n, prove that there exists at least one k for which 
n| o(k). 
14. Show that if n is a product of twin primes, say n = p(p + 2), then 
ф(п) oln) = (n + 1)(n — 3). 
15. Prove that Jald) $(n/d) = пт(п). 
din 


16. If a, a, «+, ан» is a reduced set of residues modulo n, show that 
a, t at +++ + Gon =0 (mod n). 


7.5 AN APPLICATION TO CRYPTOGRAPHY 


Classically, the making and breaking of secret codes has usually been 
confined to diplomatic and military practices. With the growing quantity 
of digital data stored and communicated by electronic data-processing 
systems, organizations in both the public and commercial sectors have 
felt the need to protect information from unwanted intrusion. Indeed, 
the widespread use of electronic funds transfers has made privacy a 
pressing concern in most financial transactions. There has thus been a 
recent surge of interest by mathematicians and computer scientists in 
cryptography (from the Greek kryptos meaning hidden and graphein 
meaning to write)—the science of making communications unintelli- 
gible to all except authorized parties. Cryptography is the only known 
practical means for protecting information transmitted through public 
communications networks, such as those using telephone lines, micro- 
waves or satellites. 

In the language of cryptography, where codes are called ciphers, 
the information to be concealed is called plaintext. After transformation 
to a secret form, a message is called ciphertext. The process of con- 
verting from plaintext to ciphertext is said to be encrypting (or enci- 
bbering), while the reverse process of changing from ciphertext back to 
plaintext is called decrypting (or deciphering). 


176 Euler's Generalization of Fermat's Theorem CHAPTER 7 


One of the earliest cryptographic systems was used by the great 
Roman emperor Julius Caesar around 50 в.с. Caesar wrote to Marcus 
Cicero using a rudimentary substitution cipher in which each letter of 
the alphabet is replaced by the letter which occurs three places down 
the alphabet, with the last three letters cycled back to the first three let- 
ters, If we write the ciphertext equivalent underneath the plaintext letter, 
the substitution alphabet for the Caesar cipher is given by: 


Plaintext: ABCDEFGHIJKLMNOPQRSTUVWXYZ 
Ciphertext: DEFGHIJKLMNOPQRSTUVWXYZABC 


For example, the plaintext message 

(1) CAESAR WAS GREAT 
is transformed into the ciphertext 

(2) FDHVDU ZDV JUHDV. 


The Caesar cipher can be described easily using congruence theory. Any 
plaintext is first expressed numerically by translating the characters of 
the text into digits by means of some correspondence like the following: 


POS ric D Bo REGO ITN JAK LM 
01 02 03 04 05 06 07 08 09 10 11 12 13 


NOUO POR ТАО Мо, 12, 
14 15 16 17 18 19 20 21 22 23 24 25 26 


If P is the digital equivalent of a plaintext letter and С is the digital 
equivalent of the corresponding ciphertext letter, then 


C= P+ 3 (mod 26). 


Thus, for instance, the letters of message (1) are converted to their 
equivalents 


(3) 03 01 05 19 01 18 23 01 19 07 18 05 01 20 
Using the congruence C= P + 3 (mod 26), this becomes the ciphertext 
(4) 06 04 08 22 04 21.26 04 22 10 21 08 04 23. 


SECTION 7.5 An Application to Cryptography m2 177 


To recover the plaintext, the procedure is simply reversed by means of 
the congruence 


P=C—3=C + 23 (mod 26). 


The Caesar cipher is very simple and hence extremely insecure. Caesar 
himself soon abandoned this scheme, not only because of its insecurity, 
but also because he didn’t trust Cicero, with whom he necessarily shared 
the secret of the cipher. 

In conventional cryptographic systems, such as Caesar’s cipher, 
the sender and receiver jointly have a secret key. The sender uses the 
key to encrypt the plaintext to be sent, while the receiver uses the same 
key in order to decrypt the ciphertext obtained. Public-key cryptography 
differs from conventional cryptography in that it uses two keys, an en- 
cryption key and a decryption key. Although the two keys effect inverse 
operations and are therefore related, there is no easily computed method 
of deriving the decryption key from the encryption key. Thus the en- 
cryption key can be made public without compromising the decryption 
key; each user can encrypt messages, but only the intended recipient 
(whose decryption key is kept secret) can decipher them. A major ad- 
vantage of a public-key cryptosystem is that it is unnecessary for each ' 
sender and receiver to exchange a key in advance of their decision to 
communicate with each other. 

In 1977, R. Rivest, A. Shamir, and L. Adleman proposed a public 
key cryptosystem which uses only elementary ideas from number theory. 
Their enciphering system is called RSA, after the initials of the algo- 
rithm's inventors. Its security depends on the assumption that in the cur- 
trent state of computer technology, the factorization of composite 
numbers with large prime factors is prohibitively time-consuming. 

Each user of the RSA system chooses a pair of distinct primes, p 
and а, large enough that the factorization of their product n = pq, called 
the enciphering modulus, is beyond all current computational capabil- 
ities. For instance, one might pick p and q with 200 digits each, so that 
n has roughly 400 digits. Having selected n, the user then chooses a 
random positive integer k, the encipbering exponent, satisfying 
gcd(k, ф(л)) = 1. The pair (п, k) is placed in a public file, analogous 
to a telephone directory, as the user's personal encryption key. This will 
allow anyone else iri the communication network to encrypt and send a 
message to that individual. Notice that while 7 is openly revealed, the 
listed public key does not mention the factors p and q of n. 


178 Euler’s Generalization of Fermat's Theorem CHAPTER 7 


The encryption process begins with the conversion of the mes- 
sage to be sent into an integer M by means of a “digital alphabet” in 
which each letter, number, or punctuation mark of the plaintext is re- 
placed by a two-digit integer. One standard procedure is to use the as- 
signment: 


А = 01 ани: U = 21 T5351 
В = 02 ИИ Vim 22 2132 
09 Mon W = 23 S33 
D = 04 N — 14 X = 24 4 = 34 
В 05 0915 y95 52135 
Е = 06 P = 16 21199126 6 = 36 
G = 07 ©. ба 4 Pim 3T 
H = 08 R8 12928. 8 = 38 
709 Song 229 9111939 
pun T= 20 0 = 30 ! =40 


with 00 indicating a space between words. In this scheme, the message 
The brown fox is quick. 
is transformed into the numerical string 
M = 2008050002181523140006152400090900172109031128. 


It is assumed that the plaintext number М < я, where n is the enci- 
phering modulus. Otherwise it would be impossible to distinguish M 
from any larger integer congruent to it modulo я. If the message is too 
lengthy to be handled as a single number М < n, then Mcan be broken 
up into blocks of digits №, Mz, --- , M, of the appropriate size. Each 
block would be encrypted separately. 

Looking up the intended recipient's encryption key (п, &) in the 
public directory, the sender disguises the plaintext number М as 4 
ciphertext number r by raising M to the Ath power and then reducing 
the result modulo 7; that is, 


M* == г (mod n). 


A 200-character message can be encrypted in seconds on a high-speed 
computer. Recall that the public enciphering exponent k was originally 
selected so that gcd(k, $(2)) = 1. While there are many suitable choices 
for b, an obvious suggestion is to pick & to be any prime factor of 
ф(п) + 1. 


SECTION 7.5 An Application to Cryptography 179 


At the other end, the authorized recipient deciphers the trans- 
mitted information by first determining the integer j, the secret recovery 
exponent, for which 


kj= 1 (mod ¢(n)). 


Since gcd(&, $(п)) = 1, this linear congruence has a unique solution 
modulo $(7). In fact, / may be obtained directly from 


j= he” - 1 (mod $(2)); 
indeed, an application of Euler's Theorem leads immediately to 
kj = 109" = 1 (mod $(п)). 


The recovery exponent can only be calculated by someone who knows 
both kand ¢(m) = (p — 1)(q — 1), hence knows the prime factors р 
and qof n. Thus, jis secure from an illegitimate third party whose knowl- 
edge is limited to the public key (n, k). 

Matters have been arranged so that the recipient can now re- 
trieve M from r by simply calculating 7’ modulo n. Because kj = 
1 + $( п) for some integer ѓ, it follows that 


riz (MY == M + $m 
= M(M*)'= M . 1'z M (mod п), 


whenever gcd(M, п) = 1. In other words, raising the ciphertext number 
to the jth power and reducing it modulo 7 recovers the original plain- 
text number M. 

The assumption that gcd(M, п) = 1 was made in order to use 
Euler's Theorem, In the unlikely event that M and 7 are not relatively 
prime, a similar argument establishes that r= M (mod p) and ғ/ = M 
(mod q), which then yields the desired congruence r’ = M (mod n). 
We omit the details. 

The major advantage of this ingenious procedure is that the en- 
cryption of a message does not require the knowledge of the two primes 
рапа а, but only their product n; there is no need for anyone other than 
the receiver of the message ever to know the prime factors critical to the 
decryption process. 


180 Euler's Generalization of Fermat's Theorem CHAPTER 7 


Example 7-5 
For the reader to gain familiarity with the RSA public-key algo- 
rithm, let us work an example in detail. We first select two primes 


p = 29,q = 53 


of an unrealistically small size, in order to get an easy-to-handle illus- 
tration, In practice, p and q would be lasge enough so that the factori- 
zation of the nonsecret n = pq is not feasible. Our enciphering modulus 
is n = 29. 53 = 1537 and 


$(п) + 1 = 52. 28 +1 = 1457 = 31. 47. 


Suppose that the enciphering exponent is chosen to be k = 47. Then 
the recovery exponent, the unique integer / satisfying the congruence 
kj = 1 (mod ф(п)), is j = 31. To encrypt the message 


NO WAY, 


first translate each letter into its digital equivalent using the substitution 
mentioned earlier; this yields the plaintext number 


M = 141500230125. 


We want each plaintext block to be an integer less than 1537. Given this 
restriction, it seems reasonable to split M into blocks of three digits each, 
The first block, 141, encrypts as the ciphertext number 


141*7 = 658 (mod 1537). 


These will be the first digits of the secret transmission. At the other end, 
knowing that the recovery exponent is j = 31, the authorized recipient 
would begin to recover the plaintext number by computing 


658?! = 141 (mod 1537). 
The total ciphertext of our message is 
0658 1408 1250 1252. 


For the RSA cryptosystem to be secure it must not be computa: 
tionally feasible to recover the plaintext M from the information as 
sumed to be known to а third party; namely, the listed public-key (7, p. 
The direct method of attack would be to attempt to factor и, an integer 
of huge magnitude; for once the factors are determined, the recovery 


SECTION 7.5 An Application to Cryptography 181 


exponent j can be calculated from ¢() = (p — 1)(q — 1) and k. Our 
confidence in the RSA system rests on what is known as the “work factor,” 
the expected amount of computer time needed to factor the product of 
two large primes. Factoring is computationally more difficult than dis- 
tinguishing between primes and composites. On today's fastest com- 
puters, a 200-digit number can routinely be tested for primality in less 
than 10 minutes, whereas the running time required to factor a com- 
posite number of the same size is prohibitive. It has been estimated that 
the quickest factoring algorithm known can use approximately (1.2) 102 
computer operations to resolve an integer with 200 digits into its prime 
factors; assuming that each operation takes one microsecond (1075 sec- 
onds), then the factorization time would be about (3.8) 10? years. Given 
unlimited computing time and some unimaginably efficient factoring al- 
gorithm, the RSA cryptosystem could be broken, but for the present it 
appears to be quite safe. 


PROBLEMS 7.5 


1. Encrypt the message RETURN HOME using the Caesar cipher. 
2. If the Caesar cipher produced KDSSB ELUWKGDB, what is the 
plaintext message? 
3. (a) A linear cipher is defined by the congruence С == aP + b 
(mod 26), where a and bare integers with gcd (a, 26) — 1. 
Show that the corresponding decrypting congruence is P 
=а'(С- b) (mod 26), where the integer a ' satisfies aa ' = 
1 (mod 26). 
(b) Using the linear cipher C= 5P + 11 (mod 26), encrypt the 
message NUMBER THEORY IS EASY. 
(c) Decrypt the message 7ZSVIW JOBVMIJ HL MVOOVI, which 
was produced using the linear cipher C= 3P + 7 (mod 26). 
4. If n = pq = 274279 and ф(п) = 272376, find the primes p and q. 
[Hint: Note that 
р+а=т- ф(п) +1, 
p- 9-10 + Ф — 4] 
5. When the RSA algorithm is based on the key (n, k) = (3233, 37), 
what is the recovery exponent for the cryptosystem? 
6. Encrypt the message GOLD MEDAL using the RSA algorithm with 
key (м, k) = (2419, 3). 


182 Euler’s Generalization of Fermat's Theorem CHAPTER7 


7. The ciphertext message produced by the RSA algorithm with key 
(n, k) = (1643, 223) is 


1451 0103 1263 0560 0127 0897. 


Determine the original plaintext message. [Hint: The recovery ex- 
ponent is j = 7.] 
8. Decrypt the ciphertext 


1037 0431 0629 0690 0204 2267 0595 


that was encrypted using the RSA algorithm with key (n, k) 
= (2419, 211). [Hint: The recovery exponent is 11.] 


Primitive Roots 
and 
Indices 


. . mathematical proofs, 
like diamonds, 
are bard as well. as clear, 


and will be touched 


with nothing but strict 


reasoning." 


JOHN LOCKE 


8.1 THE ORDER ОЕ AN INTEGER MODULO n 


In view of Euler's Theorem, we know that a*” = 1 (mod n), whenever 
gcd(a, п) = 1. However, there are often powers of a smaller than a" 
which are congruent to 1 modulo я. This prompts the following defi- 
nition: 


DEFINITION 8-1. Let n> 1 and gcd(a, n) = 1. The order ofa modulo 
n (in older terminology: the exponent to which a belongs modulo 
п) is the smallest positive integer k such that а* = 1 (mod n). 


Consider the successive powers of 2 modulo 7. For this mod- 
ulus, we obtain the congruences 


222,212 4, 222],21222,2 24,2652], . . . , 


from which it follows that the integer 2 has order 3 modulo 7. 
| Observe that if two integers are congruent modulo я, then they 
have the same order modulo n: For if а == b (mod п) and at = 1 (mod 
п), Theorem 4-2 implies that at = b (mod n), whence H= 1 (mod n). 
It should be emphasized that our definition of order modulo я 
concerns only integers a for which gcd(a , п) = 1. Indeed, if 
gcd(a , п) > 1, then we know from Theorem 4-7 that the linear con- 

gruence ax == 1 (mod п) has no solution; hence, the relation 


a = 1 (mod n), k21 


cannot hold, for this would imply that x = a*-' is a solution of ах = 1 
(mod n). Thus, whenever there is reference to the order of a modulo 
п, it is to be assumed that gcd(a , n) = 1, even if it is not explicitly 
stated. 

In the example given above, we have 2* == 1 (mod 7) whenever 
kis a multiple of 3, the order of 2 modulo 7. Our first theorem shows 
that this is typical of the general situation. 


THEOREM 8-1. Let the integer a bave order k modulo n. Then 
a’= 1 (mod n) if and only if k| b; in particular, k| ¢(n). 


ЮМ 8.1 The Order of an Integer Modulo п s 185 


Proof: Suppose to begin with that k| b, so that р = jk for some 
integer j. Since a* = 1 (mod п), Theorem 4-2 tells us that (у 
= 1/ (mod n) or æ = 1 (mod n). 3 
{ Conversely, let b be any positive integer satisfying a^ = 1 

| (mod п). By the Division Algorithm, there exist q and r such that 
| b = qk + r, where 0 = r< k. Consequently, 


a = att = (а)ға. 


By hypothesis both а == 1 (mod я) and a* = 1 (mod n), the im- 
plication of which is that а” == 1 (mod м). Since 0 € r< k, we end 
up with r = 0; otherwise, the choice of k as the smallest positive 
integer such that a* = 1 (mod я) is contradicted. Hence b = gk, 
and k| b. 


Theorem 8-1 expedites the computation when attempting to find 
е order of an integer a modulo n: instead of considering all powers 
_ of a, the exponents can be restricted to the divisors of (7). Let us obtain, 
_ by way of illustration, the order of 2 modulo 13. Since (13) = 12, the 
Order of 2 must be one of the integers 1, 2, 3, 4, 6, 12. From 


22 == 4, 22 = 8, 24 = 3, 26 = 12, 2 = 1 (mod 13), 


itis seen that 2 has order 12 modulo 13. 
i For an arbitrarily selected divisor d of $(7), it is not always true 
hat there exists an integer a having order d modulo я. An example is 
n = 12. Here $(12) = 4, yet there is no integer which is of order 4 
modulo 12; indeed, one finds that 


12 == 52 == 7? =112 = 1 (mod 12) 


d so the only choice for orders is 1 or 2. 
Here is another basic fact regarding the order of an integer. 


THEOREM 8-2. Jf a bas order k modulo n, then a' = а! (mod п) if 
and only if {== j (mod k). 


— Proof: First, suppose that a' = а! (mod n), where і 2 j. Since a is 
relatively prime to n, we may cancel a power of а to obtain 
4-125 (mod я). According to Theorem 8-1, this last congruence 
holds only if | i — j, which is just another way of saying that 
i= j (mod №. 


186 Primitive Roots and Indices CHAPTER 8 


Conversely, let {== j (mod k). Then we have i = j + qk for 
some integer q. By the definition of k, a*= 1 (mod n), so that 


a= a! + % = a(a*)* == д (mod n), 
which is the desired conclusion. 


COROLLARY. If a bas order k modulo n, then the integers a, a’, 
.. +, @ are incongruent modulo n. 


Proof: If a’ = а! (mod n) for 1 = # = j S k, then the theorem 
insures that /=j (mod k). But this is impossible unless # = j. 


A fairly natural question presents itself: is it possible to express 
the order of any integral power of ain terms of the order of a? The answer 
is the content of 


THEOREM 8-3. If the integer a Ба; order k modulo n and b> 0, then 
a’ bas order k/gcd(h , k) modulo n. 


Proof: Les d = gcd(b, k). Then we may write р = b,dand k = k,d, 
with gcd(A, , &,) = 1. Clearly, 
(авы = (24) = (g*)^ = 1 (mod п). 


If а*15 assumed to have order rmodulo n, then Theorem 8-1 asserts 
that r| &. On the other hand, since a has order ё modulo n, the 
congruence 


a” = (a*)"=1 (mod n) 


indicates that k | br; in other words, k,d| bdr or k; | br. But 
gcd(k, , 5) = 1 and therefore k| r. This divisibility relation, when 
combined with the one obtained earlier, gives 


r= k, = k/d = k/gcd(b, k), 


proving the theorem. 


The last theorem has a corollary for which the reader may supply 
a proof. 


SECTION 81 The Order of an Integer Modulo п 187 
COROLLARY. Let a Базе order k modulo n. Then a^ also bas order k 
if and only if gcd(5 , k) = 1. 


Let us see how all this works in a specific instance. 


Example 8-1 

The following table exhibits the orders modulo 13 of the positive 
integers less than 13: 

integer|1 2 3 4 5 6 7 8.9 10 11 12 
order 11 12 3.6 4 12 12 4 5 6 12 2 


We observe that the order of 2 modulo 13 is 12, while the orders 
of 2? and 2? are 6 and 4, respectively; it is easy to verify that 


6 = 12/gcd(2 , 12) and 4 = 12/gcd(5 , 12) 


in accordance with Theorem 8-3. Those integers which also have 
order 12 modulo 13 are powers 2* for which gcd(&, 12) = 1; namely, 


25226, 27 = 11, 2 == 7 (mod 13). 


If an integer a has the largest order possible, then we call 
it a primitive root of n. 


DEFINITION 8-2. If gcd(a , n) = 1 and a is of order $(п) modulo 
n, then a is a primitive root of n. 


To put it another way, п has a as a primitive root if a%” = 1 
(mod n), but а*=5 1 (mod n) for all positive integers ё < ф(п). 
It is easy to see that 3 is a primitive root of 7, for 


312 3, 32 = 2, 33 = 6, 3 = 4, 35 = 5, 36 == 1 (mod 7). 


More generally, one can prove that primitive roots exist for any prime 
modulus, a result of fundamental importance. While it is possible for a 
primitive root of я to exist when я is not a prime (for instance, 2 is a 
primitive root of 9), there is no reason to expect that every integer м will 
possess a primitive root; indeed, the existence of primitive roots is more 
the exception than the rule. 


188 Primitive Roots and Indices CHAPTERS 


Example 8-2 
Let us show that if F, = 2?" + 1, п > 1, isa prime, then 2 is not a 
primitive root of F,. (Clearly, 2 is a primitive root of 5 = А.) Since 
27*! — 1 = (22" + 1) 2?" — 1), we have 


27'*' = 1 (mod F,), 


which implies that the order of 2 modulo F, does not exceed 
2"+1, But if F, is assumed to be prime, 


OCF) =F, = 1 = 2" 


and a straightforward induction argument confirms that 22” 
> 2"*! whenever n > 1. Thus the order of 2 modulo F, is smaller 
than $(£,); referring to Definition 8-2 we see that 2 cannot be a 
primitive root of F,. 


One of the chief virtues of primitive roots lies in our next 
theorem. 


THEOREM 8-4. Let gcd(a, п) = 1 and let a, а, . . . , Gyn be the 
positive integers less than n and relatively prime to n. Ifa is a prim- 
itive root of n, then 


а os ак") 


are congruent modulo п toa, а, ..., Ayn, т some order. 


Proof: Since a is relatively prime to n, the same holds for all the 
powers of a; hence, each а* is congruent modulo я to some one of 
the а, The ¢(m) numbers in the set |a, 2, .. . ‚ @™”) are incon- 
gruent by the corollary to Theorem 8-2, hence these powers must 
represent (not necessarily in order of appearance) the integers 4, 
4... Agin) 


One consequence of what has just been proved is that, in those 


cases in which a primitive root exists, we can now state exactly how many 
there are. 


COROLLARY. [fn bas a primitive root, then it has exactly &($(n)) of 
tbem. 


SECTION 8.1 The Order of an Integer Modulo n 189 


Proof: Suppose that a is a primitive root of я. By the theorem, any 
other primitive root of n is found among the members of the set 
[а, @, . .. , а). But the number of powers a‘, 1 < k < $(n), 
which have order $(») is equal to the number of integers k for 
which gcd(k, $(п)) = 1; there are $(ф(п)) such integers, hence 
$($(п)) primitive roots of я. 


Theorem 8-4 can be illustrated by taking a = 2 and я = 9. Since 
$(9) = 6, the first six powers of 2 must be congruent modulo 9, in some 
order, to the positive integers less than 9 and relatively prime to it. Now 
the integers less than and relatively prime to 9 are 1, 2, 4, 5, 7, 8and we 
see that 


2) = 2, 22 = 4, 23 = 8, 24 = 7, 25 = 5, 26 = 1 (mod 9). 


By virtue of the corollary, there are exactly $($(9)) = $(6) = 2 
primitive roots of 9, these being the integers 2 and 5. 


PROBLEMS 8.1 


1. Find the order of the integers 2, 3, and 5: (a) modulo 17, (b) modulo 
19, and (c) modulo 23. 
2. Establish each of the statements below: 
(a) И a has order bk modulo я, then a^ has order k modulo я. 
(b) If a has order 2k modulo the odd prime p, then а* = —1 
(mod p). 
(c) If a has order п — 1 modulo n, then л is a prime. 
Prove that $(2" — 1) is a multiple of n for any n > 1, [Hint: The 
integer 2 has order » modulo 2" — 1.] 
Assume that the order of a modulo я is band the order of b modulo 
nis k. Show that the order of ab modulo z divides bk; in particular, 
if gcd(5, k) = 1, then ab has order bk. 
5. Given that a has order 3 modulo p, where pis an odd prime, show 
thata + 1 must have order 6 modulo р. [Hint: From & + a + 1 
= 0 (mod р), it follows that (а + 1)? = a (mod р) and (a + 1 
= —1 (mod p).] 


es 


m 


E 


7. 


9. 


b 


10. 


11. 


12. 


13. 


Primitive Roots and Indices CHAPTER 8 


Verify the following assertions: 

(а) The odd prime divisors of the integer n? + 1 are of the form 
ák + 1. [Hint: я? = —1 (mod p), where p is an ode prime, 
implies that 4 | ф(р). by Theorem 8-1.] 

(b) The odd prime divisors of the integer 2‘ + 1 are of tne form 
8k +1. 

(c) The odd prime divisors of the integer n? + n + 1 which are 
different from 3 are of the form 6k + 1. 

Establish that there are infinitely many primes of each of the forms 
ák + 1, Ók + 1, and 8k + 1. [Hint: Assume that there are only fi- 
nitely many primes of the form 4k + 1; call them p, p» . . . , Pr 
Consider the integer (2p, р, --- p)? + 1 and apply the previous 
problem.] 

(a) Prove that if pand gare odd primes and q| 2 — 1, then either 
dla — 1or q = 2kp + 1 for some integer k. [Hint: Since a^ 
= 1 (mod 4), the order of a modulo 415 either 1 or p; in the 
latter case, pl(4).] 

(b) Use part (a) to show that if p is an odd prime, then the prime 
divisors of 2^ — 1 are of the form 26р + 1. 

(c) Find the smallest prime divisor of the integers 27 — 1 and 
299 24. 

Prove that there are infinitely many primes of the form 26р + 1, 

where p is an odd prime. (Hint: Assume that there are finitely many 

primes of the form 2kp + 1, call them 4; 4, . . . , q,, and consider 

the integer (qi Ф --- q)” — 1] 

(a) Verify that 2 is a primitive root of 19, but not of 17. 

(b) Show that 15 has no primitive root by calculating the orders 
of 2, 4, 7, 8, 11, 13, and 14 modulo 15. 

Let rbe a primitive root of the integer n. Prove that r*is a primitive 

root of » if and only if gcd(&, $(7)) = 1. 

(a) Find two primitive roots of 10. 

(b) Use the information that 3 is a primitive root of 17 to obtain 
the eight primitive roots of 17. 

(a) Prove that if p and q > 3 are odd primes and q| R,, then 
4 = 2kp + 1 for some integer k. 

(b) Find the smallest prime divisors of the repunits R, = 11111 
and К, = 1111111. 


SECTION 8.2 Primitive Roots of Primes 191 


8.2 PRIMITIVE ROOTS FOR PRIMES 


Since primitive roots play a crucial role in many theoretical investiga- 
tions, a problem exerting a natural appeal is that of describing all inte- 
gers which possess primitive roots. We shall, over the course of the next 


few pages, prove the existence of primitive roots for all primes. Before 


doing this, let us turn aside briefly to establish a theorem dealing with 


the number of solutions of a polynomial congruence. 


THEOREM 8-5 (Lagrange). If p is a prime апа 
Хх) = a,x" + a, x" +... + axt а, a, O (mod p) 


is a polynomial of degree п = 1 with integral coefficients, then the 
congruence 


fx) = 0 (mod р) 
bas at most n incongruent solutions modulo p. 
Proof: We proceed by induction on n, the degree of f(x). If п = 1, 
then our polynomial is of the form 

Их) = ах+ а. 


Since gcd(a, ,.p) = 1, we know by Theorem 4-7 that the congru- 
ence a,x == — 2, (mod p) has a unique solution modulo p. Thus, 
the theorem holds for # = 1. 

Now assume inductively that the theorem is true for poly- 
nomials of degree k — 1 and consider the case in which f(x) has 
degree k. Either f(x) = 0 (mod р) has no solutions (and we are 
finished) or it has at least one solution, call it a. If f(x) is divided 
by.x — а, the result is 


К» = (x — 2400 + г, 


in which g(x) is a polynomial of degree k — 1 with integral coef- 
ficients and r is an integer. Substituting x = а, we obtain 


Om fla) = (a— a)q(a) + r= r (mod p) 
and so f(x) == (x — a)q(x) (mod p). 


192 Primitive Roots and Indices CHAPTER 8 


If b is another one of the incongruent solutions of f(x) 
= 0 (mod p), then 


0 = f(b) = (b — a)q(b) (mod p). 


Since b — a == 0 (mod р), this implies that q(5) =0 (mod p); in 
other words, any solution of f(x) = 0 (mod p) which is different 
from a must satisfy g(x) = 0 (mod р). By our induction assump- 
tion, the latter congruence can possess at most k — 1 incongruent 
solutions and so f(x) = 0 (mod р) will have no more than k in- 
congruent solutions. This completes the induction step and the 
proof. 


From this theorem, we can pass easily to 
COROLLARY. /f p is a prime number and d| p — 1, then the congru- 
ence 
x^ — 1 == 0 (mod р) 
` bas exactly d solutions. 


Proof: Since d| p — 1, we have p — 1 = dk for some k. Then 
XPT 1 (х4 1)f(3, 


where the polynomial f(x) = x4*-» + xe»-2 + 4 x4 1 
has integral coefficients and is of degree dk 1) = p— 1 — 4 
By Lagrange's Theorem, the congruence Kx) = 0 (mod p) has at 
most p — 1 — d solutions. We also know from Fermat's Theorem 
that x^-? — 1 = 0 (mod p) has precisely р — 1 incongruent so- 
lutions; namely, the integers 1,2, . . . 3 cil 

Now any solution x = a of x^7' — 1 = 0 (mod D) that is 
not a solution of f(x) = 0 (mod p) must Satisfy x — 1 = 0 
(mod p). For 


0=a-'— 1 = (a — 1)f(a) (mod p), 


with p / f(a), implies that p| а“ — 1. It follows that x4 — 1250 
(mod р) must have at least 


p-i-(p-1-d-d 


SECTION 8.2 Primitive Roots of Primes 193 


solutions. This last congruence can possess no more than d solu- 
tions (Lagrange's Theorem enters again), hence has exactly d so- 
lutions. 


We take immediate advantage of this corollary to prove Wilson's 
Theorem in a different way: given a prime p, define the polynomial f(x) 
by 

Ко = (6 ЮО) (xe Xp) = Qe t1) 
= a,-,X а, -XP H ++. taxt а, 


which is of degree р — 2. Fermat's Theorem implies that the p — 1 in- 
tegers 1,2, . . . , p — lare incongruent solutions of the congruence 


f(x) = 0 (mod р). 

But this contradicts Lagrange's Theorem, unless 

a =a E ++ =a, = a, =0 (mod p). 
It follows that, for any choice of the integer x, 

(х= 005 2). (x= (р п) — (а! — 1) =0 (mod p). 

Now substitute x = 0 to obtain 

(—1)(—2) --- (7-(p — 1)) + 1220 (mod p) 
of (—1)^- (p — 1)! + 1 = 0 (mod p). Either p — 1 is even or else 
р = 2, in which case —1 = 1 (mod р); at any rate, we get 

(p — 1)! = —1 (mod p). 


Lagrange's Theorem has provided us with the entering wedge. 
We are now in a position to prove that, for any prime р, there exist in- 
tegers with order corresponding to each divisor of p — 1. Stated more 
precisely: 


THEOREM 8-6. Jf p is a prime number and d| p — 1, then there are 
exactly $(4) incongruent integers baving order d modulo p. 


194 ] Primitive Roots and Indices CHAPTER 8 l 


Proof: Let d| p — 1 and let ¥(d) denote the number of integers &, 
1 = kp — 1, which have order d modulo р. Since each integer 
between 1 and p — 1 has order d for some d\p-1, 

Ri hia 2 ya). 


dip-l! 
At the same time, Gauss’ Theorem tells us that 
p-i- У Фа 


dip-i 
and so, putting these together, 
(1) У ud = У od). 


dip-1 ір 
р x р 


Our aim is to show that V(d) = (d) for each divisor d of pon; 

since this, in conjunction with équation (1), would produce the 

equality V(d) = $(4) # 0 (otherwise, the first sum would be strictly | 

smaller than the second). 4 3 | 
Given an arbitrary divisor d of D — 1, there are two possi- 

bilities: either V(d) = 0 or (d) > 0, If ¥(d) = 0, then certainly 

¥(d) = (4). Suppose that ¥(d) > 0, so that there exists ап integer 


а of order d. Then the d integers a, 2, . . . , atare incongruent 
modulo p and each of them satisfies the. polynomial congruence 
(2) x* — 1 2:0 (mod p); 


for, (2*)4 = (a*)* = 1 (mod р). By the corollary to Lagrange's 
Theorem, there can be no other solutions of (2). It follows that any 
integer which has order d modulo p must be congruent to one of 
а, 2,7... , a* But only é() of the just-mentioned powers have 
order d, namely those a*for which the exponent khas the property 
gcd(k, d) = 1. Hence, in the present situation, ¥(d) = $(d), and 
the number 6f integers having order d modulo p is equal to $(4). 
This establishes the result we set Out to prove. 


Taking d = p — 1'in Theorem 8-6, we arrive at 


COROLLARY. Гр is a prime, tben tbere are exactly (p — 1) incon- 
gruent primitive roots of p. 


ü 


SECTION 8.2 Primitive Roots of Primes 195 


An iliustration is afforded by the prime p = 13. For this modulus, 
1 has order 1; 12 has order 2; 3 and 9 have order 3; 5 and 8 have order 
4;4 and 10 have order 6; and four integers, namely 2, 6, 7, 11, have order 
12. Thus, 
Уи = 90) + VQ2) + V(G) + V4) + (6) + (12) 
d 12 


-1-1-d2-c2-2-412 
as it should. Notice too that 


y0)-71-790) w4) =2= ф(4) 
(2) = 1 = 9(2), (6) =2 = ф(6) 
V3) = 2 =ф(3), (12) = 4 = $(12). 
Incidentally, there is а shorter апа more elegant way of proving 


that ¥(d) = (d) for each 21р — 1. We simply subject the formula 
а= 9). 4c) to Möbius inversion to deduce that 


yd) = Julo) (а/о). 


In light of Theorem 7-8, the right-hand side of the foregoing equation 
is equal to ¢(d). Of course, the validity of this argument rests upon 
knowing that y is a multiplicative function. 

We can use this last theorem to give another proof of the fact 
that if p is a prime of the form 4k + 1, then the quadratic congruence 
x? = —1 (mod p) admits a solution. Since 4| p — 1, Theorem 8-6 tells 
us that there is an integer а having order 4 modulo p; in other words, 


=: а* = 1 (тоа p) 
or equivalently, 
(g — 1)(@ + 1) =0 (mod p). 
Because p is a prime, it follows that either 
а — 1=0 (mod р) ога? + 1 =0 (mod p). 


If the frst congruence held, then a would have order less than or equal 
10 2, a contradiction. Hence, @ + 1 = 0 (mod p), making the integer а 
a solution to the congruence х? = —1 (mod р). 


196 Primitive Roots and Indices CHAPTER 8 


Theorem 8-6, as proved, has an obvious drawback; while it does 
indeed imply the existence of primitive roots for a given prime p, the 
proof is nonconstructive. To find a primitive root, one must usually pro- 
ceed by brute force or else fall back on the extensive tables that have 
been constructed. The accompanying table lists the smallest positive 
primitive root for each prime below 200. 


Least positive Least positive 
Prime primitive root Prime primitive root 

2 1 89 3 

3 2 97 5 

5 2 101 2 

T 3 103 5 
11 2 107 2 
13 2 109 6 
17 3 113 3 
19 2 127 3 
23 5 131 2 
29 2 137 3 
31 3 139 2 
37 2 149 2 
41 6 151 6 
43 3 157 5 
47 5 163 2 
53 2 167 5 
59 2 173 2 
61 2 179 2 
67 2 181 2 
71 7 191 19 
73 5 193 5 
79 3 197 2 
83 2 199 3 


If x() designates the smallest positive primitive root of the 
prime p, then the table presented above shows that х(р) = 19 for 
all p < 200. In fact, x(p) becomes arbitrarily large as p increases without 
bound. The table suggests, although the answer is not yet known, that 
there exist an infinite number of primes D for which x(p) = 2. 


x 


SECTION 8.2 Primitive Roots of Primes 197 


In his Disquisitiones Arithmeticae, Gauss conjectured that there 
are infinitely many primes having 10 as a primitive root. In 1927 Emil 
Artin generalized this unresolved question as: For a not equal to 1, —1, 
or a perfect square, do there exist infinitely many primes having a as а 
primitive root? While there is little doubt that this conjecture is true, it 
has yet to be proved. Recent (1986) work has shown that there are in- 
finitely many а for which Artin's conjecture is true, and at most two primes 
for which it fails. 

The restrictions in Artin's conjecture are justified as follows. Let 
а be a perfect square, say a = x?, and let p be an odd prime with 
gcd(a , p) = 1. If p / x, then Fermat's Theorem yields x^ - 1 = 1 
(mod р), whence 


а? - 02 = (x?) @ - 002 = 1 (тоа р). 


Thus а cannot serve as a primitive root of p [if p| x, then p| а and surely 
ar- s ] (mod p)]. Furthermore, since (—1)? = 1, —1 is nota primitive 
root of p whenever p — 1 > 2. 


Example 8-3 
Let us employ the various techniques of this section to find the 
$(6) = 2 integers having order 6 modulo 31. To start, we know that 
there are 


$($(31)) = $(30) = 8 


primitive roots of 31. Obtaining one of them is a matter of trial and 
error. Since 25 = 1 (mod 31), the integer 2 is clearly ruled out. We 
need not search too far, since 3 turns out to be a primitive root of 
31. Observe that in computing the integral powers of 3 it is not 
necessary to go beyond 3*5; for the order of 3 must divide ф(31) 
7 30 and the calculation 


315 = (27) = (—4) = (—64) (16) = —2(16) 
== —1 s* 1 (mod 31) 


shows that its order is greater than 15. 

Because 3 is a primitive root of 31, any integer which is 
relatively prime to 31 is congruent modulo 31 to an integer of the 
form 3*, where 1 < k = 30. Theorem 8-3 asserts that the order of 


198 Primitive Roots and Indices CHAPTER 8 


3+ is 30/gcd(&, 30); this will equal 6 if and only if gcd(k , 30) = 
5, The values of & for which the last equality holds are & = 5 and 
k = 25. Thus our problem is now reduced to evaluating 3° and 3*° 
modulo 31. A simple calculation gives 


35 = (27)9 = (—4)9 = —36 = 26 (mod 31), 
325 == (35)> = (26) = (—5)* = (—125) (25) = —1(25) 
= 6 (mod 31), 


so that 6 and 26 are the only integers having order 6 modulo 31. 


PROBLEMS 8.2 


1. If pis an odd prime, prove that 
(a). the only incongruent solutions of ‘x? = 1 (mod p) are 1 and 
p>; 
(b) the congruence x^^? +... + № + x + 170 (mod p) has 
exactly p — 2 incongruent solutions and they are the integers 
А Ир 
2. Verify that each of the congruences x? == 1 (mod 15), х? = —1 
(mod 65) and x? = —2 (mod 33) has four incongruent solutions; 
hence, Lagrange’s Theorem need not hold if the modulus is a com- 
posite number. Ў 
Determine all the primitive roots of the primes р = 11, 19, апа 23, 
expressing each as a power of some one of the roots. 
Given that 3 is a primitive root of 43, find 
(a) all positive integers less than 43 having order 6 modulo 43; 
(b) all positive integers less than 43 having order 21 modulo 43. 
Find all positive integers less than 61 having order 4 modulo 61. 
Assuming that ris a primitive root of the odd prime р, establish the 
following facts: 
(a) The congruence r'^7 "> = —1 (mod p) holds. 
(b) If 7' is any other primitive root of p, then rr’ is not a primitive 
root of р. [Hint: By part (a), (rr)'^- 7 = 1 (mod р).] 
(c) If the integer r’ is such that rr’ == 1 (mod р), then r’ isa 
primitive root of p. 
For a prime p > 3, prove that the primitive roots of p occur in pairs 
r, r' where rr’ = 1 (mod p). (Hint: If ris a primitive root of p, con- 
sider the integer r' = 7-2] 


> 


> 


aye 


D 


SECTION 8.3 Composite Numbers Having Primitive Roots 199 


8. Let rbe a primitive root of the odd prime p. Prove that 
(a) if p=1 (mod 4), then —ris also a primitive root of p; 
(b). if p= 3 (mod 4), then — r has order (p. — 1)/2 modulo р. 
9. Give a different proof of Theorem 5-5 by showing that if ris a prim- 
itive root of the prime р = 1 (mod 4), then r=» * satisfies the 
quadratic congruence x? + 1 = 0 (mod p). 

10. Use the fact that each prime p has a primitive root to give a different 
proof of Wilson's Theorem. [Hint: If p has a primitive root r, then 
by Theorem 8-4 (p — 1)! = r!*?*-- *'^-" (mod p).] 

11. Ifpisa prime, show that the product of the ¢(p — 1) primitive roots 
of p is congruent modulo p to ( — 1)*- ". [Hint: И ris a primitive 
root of p, then the integer r* is a primitive root of p provided that 
gcd(k, p 1) = 1; now use Theorem 7-7.] 

12. For an odd prime p, verify that the sum 

0 (mod p) if (p 1) X n 

Vos A irit bie тан (ps is | —1 (mod p) if (p= DIm 


L If (p = 1) Ли, and ris a primitive root of p, then the sum 
is congruent modulo p to 


нет — 1 
Lt ort rie ele Pople a ааа 
p 


8.3 COMPOSITE NUMBERS HAVING PRIMITIVE ROOTS 


We saw earlier that 2 is a primitive root of 9, so that composite numbers 
can also possess primitive roots. The next step of our program is to de- 
termine all composite numbers for which there exist primitive roots. 
Some information is available in the following two negative results. 


THEOREM 8-7. For k = 3, the integer 2* bas no primitive roots. 


Proof: For reasons that will become clear later, we start by showing 
that if а is an odd integer, then for k = 3 


a*t °= 1 (mod 2°). 


200 Primitive Roots and Indices CHAPTER 8 


If k = 3, this congruence becomes a? = 1 (mod 8), which is cer- 
tainly true (indeed, 12 == 3? = 5? == 7? = 1 (mod 8)). For k > 3, 
we proceed by induction on &. Assume that the asserted congru- 
ence holds for the integer k; that is, Z^" ^ = 1 (mod 2%). This is | 
equivalent to the equation 


a *=1 + 0, 
where b is an integer. Squaring both sides, we obtain 
Ba ween an уа eT Hp 20125) + (199) 
"LEA b ft 
= 1 (mod 2* * 1), 
so that the asserted congruence holds for & + 1 and hence for all 
k>3. 
Now the integers which are relatively prime to 2° are pre- 


cisely the odd integers; also, $(2*) = 2*-!. By what was just proved, 
if a is an odd integer and k 2 3, 


q*?^? = | (mod 2*) 


and, consequently, there are no primitive roots of 2*. 
Another theorem in this same spirit is 


THEOREM 8-8. Ifgcd(m, n) = 1, where m > 2 and n > 2, then the 
integer mn bas no primitive roots. 


Proof: Consider any integer a for which gcd(a, mn) = 1; then 
gcd(a, m) = land gcd(a, п) = 1. Put b = lcm($(m) , $(п)) and 
d = gcd($Cm) , $(п)). 

Since фт) and ф(п) are both even (Theorem 7-4), surely 
d= 2. In consequence, 


p = dme) = dim 
d Pius 


Now Euler's Theorem asserts that a* == 1 (mod m). Raising this 
equation to the $()/d power, we get 


a = (qm) 90а == 190/42 1 (mod m). 


SECTION 8.3 Composite Numbers Having Primitive Roots 201 


Similar reasoning leads to а*== 1 (mod я). Together with the hy- 
pothesis gcd(m , n) = 1, these congruences force the conclusion 
that 


a^ = 1 (mod mn). 


„The point which we wish to make is that the order of any integer 
relatively prime to mn does not exceed $(mn)/2, whence there 
can be no primitive roots for mn. 


Some special cases of Theorem 8-8 are of particular interest and 
we list these below. 


Coroutary. The integer n fails to have a primitive root if either 

(1) п is divisible by two odd primes, or 

(2) n is of tbe form n — 2"p*, wbere p is an odd prime and 
m= 2. 


The significant feature of this last series of results is that they 
restrict our search for primitive roots to the integers 2, 4, р“ and 2p*, 
where p is an odd prime. In this section, we shall prove that each of the 
numbers just mentioned has a primitive root, the major task being the 
establishment of the existence of primitive roots for powers of an odd 
prime. The argument is somewhat long-winded, but otherwise routine; 
for the sake of clarity, it is broken down into several steps. 


LEMMA 1. Jf p is an odd prime, then there exists а primitive root r 
of p such that r^- 151 (mod p^). 


Proof: From Theorem 8-6, it is known that p has primitive roots. 
Choose any one, call it r. If.r^-'2& 1 (mod р), then we are finished. 
In the contrary case, replace rby г’ = r + р, which is also a prim- 
itive root of p. Then employing the Binomial Theorem, 


(пр-те (r+ pyr т (p — 1)рт? т ? (тоа p?). 
But we have assumed that r?-! == 1 (mod р”); hence 
(r) 71 21 — pr^? (mod p°). 


Since ris a primitive root of p, gcd(r, р) = 1and so p X r^-?. The 
outcome of all this is that (r')^- 154 1 (mod р), as desired. 


202 Primitive Roots and Indices CHAPTER 8 


COROLLARY. Jf p is an odd prime, then р? bas a primitive root; in 
fact, for a primitive root r of p, either r or r+ p is a primitive root 
of p°. 


Proof: The assertion is almost obvious: If r is a primitive root of p, 
then the order of r modulo p? is either p — 1 or else p(p — 1). 
= $(p?). The foregoing proof shows that if rhas order p — 1 modulo 

p^, then r + p will be a primitive root of p. 


To reach our goal, another somewhat technical lemma is needed. 
LEMMA 2. Let p be an odd prime and r be a primitive root of p sucb 
that r^ - "=£ 1 (mod p°). Then for each positive integer k = 2, 

ret p= Y gi ] (mod p*): 


Proof: The proof proceeds by induction on &. By hypothesis, the 
assertion holds for & — 2. Let us assume that it is true for some 
k = 2 and show that it is true for k + 1. Since gcd (r, р^!) = рса 
(r, p*) = 1, Euler's Theorem indicates that 


P HP 1) em пы! (mod pi- n). 
Hence, there exists an integer a satisfying 
ph e-o = 1 + арк), ~ 


where p / a by our induction hypothesis. Raise both sides of this 
last-written equation to the pth power and expand to obtain 


700-0 = (1+ ap*~')?=1 + ар (mod p* + '). 
Since the integer a is not divisible by p, we have 
О = 1 (mod p* + 1), 


This completes the induction step, thereby proving the lemma, 


re 


pn^ 


The hard work, for the moment, is over. We now stitch the pieces 
together to prove that the powers of any odd prime have a primitive root. 


THEOREM 8-9. If p is an odd prime number and k = 1, then there 
exists a primitive root for p*. 


SECTION 8.3 Composite Numbers Having Primitive Roots 203 


Proof: The two lemmas allow us to choose a primitive root r of p 
for which r% ~ * - 05 1 (mod 55); in fact, any rsatisfying the con- 
dition r^^ ' zé 1 (mod p?) will do. We argue that such an r serves 
as a primitive root for all powers of p. 

Let n be the order of г modulo p*. In compliance with 
Theorem 8-1, n must divide $(p*) = p*- (р — 1). Since r” = 1 
(mod p*) implies that r” = 1 (mod р), we also have p — 1| n 
(Theorem 8-1 serves again). Consequently, » assumes the form 
n = p"(p — 1), where 0 € m < k — 1. If it happened that 
п + p*~*(p — D, then p*7*(p — 1) would be divisible by n and 
we would arrive at 


r^ Ф 1) == 1 (mod p*), 
contradicting the way in which r was initially picked. Therefore, 
п = рк (p — 1) and ris a primitive root for p*. 


This leaves only the case 2р* for our consideration. 


COROLLARY. There are primitive roots for 2p*, where p is an odd 
prime and b > 1. 


Proof: Let r be a primitive root for p*. There is no harm in assuming 
that ris an odd integer; for, if it is even, then r + p* is odd and is 
still a primitive root for p*. Then gcd(r, 2p*) = 1. The order n of 
r modulo 2p* must divide 


9 (2p!) = Ф(2)ф(р") = p). 


But r” = 1 (mod 2p*) implies that r" = 1 (mod f^), and so 
¢(p*) | n. Together these divisibility conditions force n = $(21*), 
making га primitive root of 2p*. 


| The prime 5 has $(4) = 2 primitive roots, namely the integers 
| 2 and 3. Since 


25 -1=16 Æ 1(mod25) and 3°-!==6 sé 1 (mod 25), 


these also serve as primitive roots for 5?, hence for all higher powers of 
5. The proof of the last corollary guarantees that 3 is a primitive root for 

all numbers of the form 2 · 5*. 

| 


204 Primitive Roots and Indices CHAPTER 8 


We summarize what has been accomplished in 


THEOREM 8-10. An integer n> 1 bas a primitive root if and only 
math 
n= 2,4, p*, or 2p*, 
where p is an odd prime. 


Proof: By virtue of Theorems 8-7 and 8-8, the only positive integers 
with primitive roots are those mentioned in the statement of our 
theorem. It may be checked that 1 is а primitive root for 2, while 
3 is a primitive root of 4. We have just finished proving that prim- 
itive roots exist for any power of an odd prime and for twice such 
a power. 


This seems the opportune moment to mention that Euler gave 
an essentially correct (although incomplete) proof in 1773 of the exis- 
tence of primitive roots for any prime p and listed all the primitive roots 
for p = 37. Legendre, using Lagrange's Theorem, managed to repair the 
deficiency and showed (1785) that there are $(4) integers of order d for 
each d| (p — 1). The greatest advances in this direction were made by 
Gauss when, in 1801, he published a proof that there exist primitive roots 
of n if and only if = 2, 4, pt, and 2*, where p is an odd prime. 


PROBLEMS 8.3 


1. (a) Findthe four primitive roots of 26 and the eight primitive roots 
of 25. 
(b) Determine all the primitive roots of 32, 3* and 3*. 
2. For an odd prime р; establish the following facts: 
(a) There are as many primitive roots of 2p" as of p". 


(b) Any primitive root r of p" is also a primitive root of p: [Hint: 


Let r have order k modulo p. Show that 7^* = 1 (mod р”), 
,7^ "z] (mod р”), hence $(р”) | р"- ! e] 
(c) А primitive root of p* is also.a primitive root of р” for я = 23 


prece wn n POR ve 


SECTION 8.3 Ccinposite Numbers Having Primitive Roots 205 


3. 


14; 


If ris a primitive root of р?, p being'an odd prime; show that the 
solutions of the congruence x^- ' = 1 (mod р?) are precisely the 
integers r^, r^, ... РТР, 
(a) Prove that 3 is a primitive root of all integers of the form 7* 
and 2 . 7*. 
(b) Find a primitive root for any integer of the form 17^. 
Obtain all the primitive roots of 41 and 82. 
(a) Prove that a primitive root r of p*, where p is an odd prime, 
is a primitive root of 2p* if and only if r is an odd integer. 
(b) Confirm that 3, 33, 35, and 3° are primitive roots of 578 = 
2. 172, but that 37 and 3" are not. 
Assume that r is a primitive root of the odd prime p and 
(r + tp)^- ! *& 1 (mod f>). Show that r + /p is a primitive root of 
p* for each ё 2 1. 


If = 2%p,"p,” .. . p,*ris ће prime factorization of n > 1, define 
the universal exponent A(n) of п by 
ACn) = lem(A(2^) , фр), о, Ot) 


where \(2) = 1, A(2?) = 2, and (2^) = 2*-' for k z 3. Prove the 

following statements concerning the universal exponent: 

(a) For n = 2, 4, р*, 2p*, where p is an odd prime, A(n) = (n). 

(b) If gcd(a, 2*) = 1, then a^*^ = 1 (mod 2°). (Hint: For k= 
3, use induction on kand the fact that À(2^* !) = 2A(2^).] 

(c) If ged(a , п) = 1, then a” = 1 (mod п). [Hint: For each 
prime power p* occurring in zz, a” = 1 (mod f*).] 

Verify that, for 5040 = 2". 32. 5 . 7, (5040) = 12 and $(5040) 

= 11525 

Use Problem 8 to show that if n # 2, 4, р“, 2p*, where p is an odd 

prime, then я has no primitive root. [Hint: Except for the cdses 2, 


4, р“, 2p*, we have A(n) | 36D; hence, 2%"; = 1 (mod n) when- 


ever gcd(a, n) = 1] 
(а) Prove that if gcd(a , п) = 1, then the linear congruence 
ах = b (mod n) has the solution x= bg*'" -' (mod n). 
(b)... Use part (a) to solve the congruences 13 == 2 (mod 40) and 
3x25 13 (mod 77). 


206 Primitive Roots and Indices CHAPTER 8 


8.4 THE THEORY OF INDICES 


The remainder of the chapter is concerned with a new idea, the concept 
of index. Let n be any integer which admits a primitive root r. As we 
know, the first $(7) powers of r, 


ET EI TES 
are congruent modulo л, in some order, to those integers less than п 


and relatively prime to it. Hence, if a is an arbitrary integer relatively 
prime to n, then a can be expressed in the form 


а== r* (mod n) 


for a suitable choice of k, where 1 € k < $(n). This allows us to frame 
the following definition. 


DEFINITION 8-3. Let r be a primitive root of n. If gcd(a , п) = 1, 
then the smallest positive integer k such that a = r* (mod n) is 
called the index of a relative to r. 


One customarily denotes the index of a relative to rby ind,a or, 
if no confusion is likely to occur, by ind a. Clearly, 1 € ind, a = ¢(”) 
and 


rindra = q (mod n). 


The notation ind,a is meaningless unless gcd (а, n) = 1; in the future, 
this will be tacitly assumed. 


For example, the integer 2 is a primitive root of 5 and 
21 222, 2? = 4, 25 = 5, 2 = 1 (mod 5). 
It follows that 
ind; 1 — 4, ind; 2 — 1, ind, 3 — 3, ind, 4 — 2. 


Observe that indices of integers which are congruent modulo 7 
are equal. Thus, when setting up tables of values for ind а, it suffices to 
consider only those integers a less than and relatively prime to the mod- 
ulus я. To see this, suppose that a = b (mod n), where a and b are 
relatively prime to л. Since 7% === д (mod n) and м" == b (mod n), 
we have 


rind 2 == rind b (mod n). 


+ 


SECTION 8.4 The Theory of Indices 207 


Invoking Theorem 8-1, it may be concluded that ind a = ind b 
(mod ф(п)). But, because of the restrictions on the size of ind a and ind 
b, this is only possible if ind а = ind b. 

Indices obey rules which are reminiscent of those for loga- 
rithms, with the primitive root playing a role analogous to that of the 
base for the logarithm. 


THEOREM 8-11. /f n bas a primitive root r and ind a denotes the 
index of a relative to r, then 


(1) ind (ab) = ind а + ind b (mod $(»)), 
(2) ind a*= kind a (mod $(»)) for k > 0, 
(3) ind 1 =0 (mod ¢(n)), ind r= 1 (mod $(п)). 


Proof: By the definition of index, га == a (mod п) and гв = p 
(mod n). Multiplying these congruences together, we obtain 
| rind a + ind b= ab (mod n). 
But r^t (4 = ab (mod n), so that 
pindia + nd b == pind (ab) (mod я). 


It may very well happen that ind а + ind b exceeds ¢(n). This 
presents no problem, for Theorem 8-1 guarantees that the last 
equation holds if and only if the exponents are congruent modulo 
$72; that is, 


ind a + ind b= ind (ab) (mod ¢(n)), 


The proof of property (2) proceeds along much the same 
lines. For we have г!" * 2 a* (mod n) while, by the laws of ex- 
ponents, гё! е = (pinda) z дё (mod 7); hence, 


pind at == rk ind a (mod n). 
As above, the implication is that ind а‘ = k ind a (mod ¢(n)). The 
two parts of (3) should be fairly apparent. 
The theory of indices can be used to solve certain types of con- 
Bruences. For instance, consider the binomial congruence 


x* == a (mod п), k>? 


208 Primitive Roots and Indices CHAPTER 8 


where nis a positive integer having a primitive root and gcd(a, n) = 
1. By properties (1) and (2) of Theorem 8-11, this congruence is entirely 
equivalent to the linear congruence 


kind x= ind а (mod $(7)) 


in the unknown ind x. If d = gcd(k, $(п)) and d / ind а, there is no 
solution. But, if dl ind а, then there are exactly d values of ind x which 
will satisfy this last congruence, hence d incongruent solutions of 
xt = а (mod n). 

The case in which k = 2 and n = p, with рап odd prime, is 
particularly important. Since gcd(2 , p — 1) — 2, the foregoing remarks 
imply that the congruence x? == a (mod р) has a solution if and only if 
2lind а; when this condition is fulfilled, there are exactly two solutions. 
If r is a primitive root of p, then r*(1 € k = p — 1) runs through the 
integers 1,2, . . . , p — 1, in some order. The even powers of r produce 
the values of a for which the congruence x? = a (mod p) is solvable; 
there are precisely (p — 1)/2 such choices for a. 


Example 8-4 
For an illustration of these ideas, let us solve the congruence 
4x? = 7 (mod 13). 


A table of indices can be constructed once a primitive root of 13 is 
fixed. Using the primitive root 2, we simply calculate the powers 


2,22, .. . , 2? modulo 13. Here, 
2522 6, 2° = 5 
252212, 20 2910 
22 | 27211, 2127 
24 =3, 28 = 9. 222251 


all modulo 13, and hence our table is 
4262 13:4. 35336 7:89. 10. .11: 12 
Marae 1 4 209 5 11 51810-76 


Taking indices, the congruence 4x? = 7 (mod 13) has а 
solution if and only if 


ind, 4 + 9 ind, x= ind; 7 (mod 12). 


SECTION 8.4 The Theory of Indices 209 


The table gives the values ind, 4 = 2 and ind, 7 = 11, so that the 
last congruence becomes 9 ind; x=11 — 2 = 9 (mod 12) which 
in turn is equivalent to ind, x= 1 (mod 4). It follows that 


ind; x = 1, 5, or 9. 


Consulting the table of indices again, we find that the congruence 
4 № = 7 (mod 13) possesses the three solutions 


x= 2, 5, and 6 (mod 13). 


If a different primitive root is chosen, one obviously ob- 
tains a different value for the index of a; but, for purposes of solving 
the given congruence, it does not really matter which index table 
is available. The $($(13)) = 4 primitive roots of 13 are obtained 
from the powers 2*(1 < k < 12), where 


gcd(k, $(13)) = gcd(&, 12) = 1. 
These are 
2! = 2, 25 == 6,27 = 11, 2" == 7 (mod 13). 


The index table for, say, the primitive root 6 is displayed below: 


4| 1: 273. воск”? 8 9 10:91 Wa 
іпа, 2112 5 8 10 9 1 7 54 2'11-6 


Employing this table, the congruence 4x° = 7 (mod 13) is re- 
placed by 


ind, 4 + 9 ind, x= ind, 7 (mod 12) 


ог rather, 
9 ind; x= 7 — 10= —3 =9 (mod 12). 
Thus, ind; x — 1, 5, or 9, leading to the solutions 
sp x= 2,5, and 6 (mod 13), 


as before. 


The following criterion for solvability is often useful. 


210 Primitive Roots and Indices CHAPTER 8 


The following criterion for solvability is often useful. 


THEOREM 8-12. Let n be an integer possessing a primitive root and 
let gcd(a., п) = 1. Then the congruence x* = a (mod п) has а 
solution if and only if 


а%"/4== ] (mod n), 


where d = gcd(k, $(n)); if it bas a solution, there are exactly а 
solutions modulo n. 


Proof: Taking indices, the congruence a*'"/4^z 1 (mod п) is equiv- 
alent to 

em ind а = 0 (mod ¢(n)) 
which in its turn holds if and only if d| ind а. But we have just seen 
that the latter is a necessary and sufficient condition for the con- 
gruence х* = a (mod п) to be solvable. 


ConoLLaRY (Euler). Let p be a prime and gcd(a, р) = 1. Then the 
congruence х" = a (mod p) bas a solution if and only if à^- '''* 
= 1 (mod р), where d = gcd(k, p — 1). 


Example 8-5 
Let us consider the congruence 
x? = 4 (mod 13). 


Here, d= gcd(3 , ф(13)) = gcd(3, 12) = 3 and so $(13)/4 = 4. 
Since 4* = 9= 1 (mod 13), Theorem 8-12 asserts that the given 
congruence is not solvable. 

On the other hand, the same theorem guarantees that 


x? = 5 (mod 13) 


will possess a solution (in fact, there are three incongruent solu- 
tions modulo 13); for, in this case, 54 = 625 = 1 (mod 13). These 
solutions can be found by means of the index calculus as follows: 
The congruence x? == 5 (mod 13) is equivalent to 


3 ind; x= 9 (mod 12), 


which becomes 


ind, x= 3 (mod 4). 


SECTION 8.4 The Theory of Indices 211 


This last equation admits three incongruent solutions modulo 12, 
namely 


ind, x = 3, 7, or 11. 


The integers corresponding to these indices are, respectively, 8, 11, 
and 7, so that the solutions of the congruence x? == 5 (mod 13) are 


x = 7, 8,and 11 (mod 13). 


PROBLEMS 8.4 


1. Find the index of 5 relative to each of the primitive roots of 13. 

2. Using a table of indices for a primitive root of 11, solve the.con- 
gruences 
(а) 7x? = 3 (mod 11) 
(b) 3x* == 5 (mod 11) 
(c) хз = 10 (mod 11) 

3. The following is a table of indices for the prime 17 relative to the 
primitive root 3: 


241,23 45 677 7870710 à ?12*13 34" 45 16 
ind,al16 14 1 12 5 15 11 102 3 713 4 9.0078 


With the aid of this table, solve the congruences 
(а) x = 13 (mod 17) (b) 8x*= 10 (mod 17) 
(с) 9x*==8(mod17) (d) 7*=7 (mod 17) 
4. Find the remainder when 3* - 513 is divided by 17. [Hint: Use the 
theory of indices.] 
5. If rand r' are both primitive roots of the odd prime р, show that 
for gcd(a, p) — 1 
ind, а == (ind, а) (ind, 7) (mod p — 1). 


This corresponds to the rule for changing the base of logarithms. 
' €. (a) Construct a table of indices for the prime 17 with respect 
to the primitive root 5. [Hint: By the previous problem, 
ind, a= 13 ind, a (mod 16).] 
(b) Using the table in part (a), solve the congruences in Problem 
$ 
7. If ris a primitive root of the odd prime p, verify that 


ind, (—1) = ind, (p 1) = (p 1). 


212 


10. 


11 


12. 


13. 


14. 


15. 


16. 


17. 


Primitive Roots and Indices CHAPTER 8 


(a) Determine the integers a (1 = а < 12) such that the con- 
gruence ax‘ = b (mod 13) has a solution for = 2, 5, and 6. 
(b) Determine the integers a (1 = а= p — 1) such that the con- 
gruence x* a (mod p) has a solution for p — 7, 11, and 13. 
Employ the corollary to Theorem 8-12 to establish that if p is an 
odd prime, then 
(a) x? == —1 (mod p) is solvable if and only if p = 1 (mod 4); 
(b) x‘ = —1 (mod p) is solvable if and only if p= 1 (mod 8). 
Given the congruence x* = a (mod p), where p = 5 is a prime 
number and gcd(a , р) = 1, prove that 
(a) if p=1 (mod 6), then the congruence has either no solutions 
or three incongruent solutions modulo p; 
(b) if p=5 (mod 6), then the congruence has a unique solution 
modulo p. 
Show that the congruence x? = 3 (mod 19) has no solutions, while 
х? = 11 (mod 19) has three incongruent solutions. 
Determine whether the two congruences x? = 13 (mod 23) and 
x = 15 (mod 29) are solvable. 
If p is a prime and gcd(&, p — 1) = 1, prove that the integers 
1€ 5 A^. mn »UD D* 
form a reduced set of residues modulo p. 
Let r be a primitive root of the odd prime p and let d = 
gcd(k, p — 1). Prove that the values of a for which the congruence 
x* = а (mod р) is solvable are r^, r?4, . . . , piP D 44, 
If r is a primitive root of the odd prime р, show that ind,(p — a) 
= ind,a t (p — 1)/2 (mod p — 1); hence only one-half of an index 
table need be calculated in order to complete the table. 
(a) Let rbea primitive root of the odd prime p. Establish that the 
exponential congruence 


a = b (mod p) 


has a solution if and only if d| ind,b, where the integer d = 
gcd(ind,a , p — 1); in this case, there are d incongruent so- 
lutions modulo p. 

(b) Solve the exponential congruences 4* 2:13 (mod 17) and 
5*= 4 (mod 19). 

For which values of b is the exponential congruence 9* — 5 

(mod 13) solvable? 


The Quadratic 


Reciprocity 
Law 


“The moving power 


of mathematical invention 
is not reasoning 


but imagination.” 


A. DEMORGAN 


9.1 EULER’S CRITERION 


As the heading suggests, the present chapter has as its goal another major 
contribution of Gauss: the Quadratic Reciprocity Law. For those who 
consider the theory of numbers “the Queen of Mathematics," this is one 
of the jewels in her crown. The instrinsic beauty of the Quadratic Rec- 
iprocity Law has long exerted a strange fascination for mathematicians. 
Since Gauss' time, over a hundred proofs of it, all more or less different, 
have been published (in fact, Gauss himself eventually devised seven). 
Among the eminent mathematicians of the 19th century who contrib- 
uted their proofs appear the names of Cauchy, Jacobi, Dirichlet, Eisen- 
stein, Kronecker, and Dedekind. 

Roughly speaking, the Quadratic Reciprocity Law deals with the 
solvability of quadratic congruences. It therefore seems appropriate to 
begin by considering the congruence j 


(1) ах? + bx + c=0 (mod p), 


where pis an odd prime and a5 0 (mod р); that is, рса(а, р) = 1. The 
supposition that р is an odd prime implies that gcd(4a , р) = 1. Thus, 
congruence (1) is equivalent to 


4а(ах? + bx + c) = 0 (mod p). 
Using the identity 
4а(ах? + bx + c) = (2ax + b? — (b? — 4ac), 
the last-written congruence may be expressed as 
(2ax + b)! = (b? — 4ac) (mod p). 
Now put у = 2ax + band d= b? — 4acto get 
(2) J^ = d (mod p). 


If x = x, (mod p) is a solution of (1), then y = 2ax, + b (mod p) 
satisfies the congruence (2). Conversely, if у= y, (mod p) is a solution 


misi › then 2ax = y, — b (mod p) can be solved to obtain a solution 
of (1). 


214 


SECTION 9.1 Euler's Criterion 215 


Thus, the problem of finding a solution to the quadratic congru- 
ence (1) is equivalent to that of finding a solution toa linear congruence 
and a quadratic congruence of the form 


(3) x? == а (mod р). 


If pl а, then (3) has x = 0 (mod p) аз its only solution. To avoid trivi- 
alities, let us agree to assume hereafter that p / a. 

Granting this, whenever x = a (mod p) admits a solution 
X = x, then there is also a second solution x = p = x, This second 
solution is not congruent to the first. For x = p — x, (mod D) implies 
that 2x, = 0 (mod р), or x, = 0 (mod p), which is impossible. By La- 
grange's Theorem, these two solutions exhaust the incongruent solu- 
tions of x? = a (mod p). In short: x? = а (mod p) has exactly two 
solutions or no solutions. 

А simple numerical example of what we have just said is pro- 
vided by the congruence 


5x? — бх + 2 = 0 (mod 13). 
To obtain the solution, one replaces this congruence by the simpler one 
y! = 9 (mod 13) 
with solutions y= 3, 10 (mod 13). Next, solve the linear congruences 
10x = 9 (mod 13), 10x = 16 (mod 13). 


It is not difficult to see that x= 10, 12 (mod 13) satisfy these equations 
and, by our previous remarks, the original quadratic congruence also. 

The major effort in this presentation is directed towards pro- 
viding a test for the existence of solutions of the congruence 


(4) x? = a (mod p), gcd(a, p) = 1. 


To put it differently, we wish to identify those integers a which are per- 
fect squares modulo p. Some additional terminology will help us to dis- 
Cuss this situation in a concise way: 


DEFINITION 9-1. Let p be an odd prime and ged(a, p) = 1. If the 
congruence х? == a (mod p) has a solution, then a is said to be a 
quadratic residue of p. Otherwise, a is called a quadratic nonres- 
idue of p. 


216 * The Quadratic Reciprocity Law CHAPTER9 


The point to be borne in mind is that if a= b (mod р), then а 
is a quadratic residue of p if and only if b is a quadratic residue of p. 

Thus, we need only determine the quadratic character of those 
positive integers less than p in order to ascertain that of any integer. 


Example 9-1 
Consider the case of the prime р = 13. To find out how many of 
the integers 1, 2, 3. . . ., 12 are quadratic residues of 13, we must 


know which of the congruences 
x? = а (mod 13) 


are solvable when a runs through the set (1, 2,. . . 12]. Modulo 
13, the squares of the integers 1,2, 3, . . ., 12 аге 

12 == 12? =], 

22 == 11? == 4, 

3: == 10? 22 9, 

4 == 92 == 3, 

5: == 82 = 12, 

6? ==72 == 10. 
Consequently, the quadratic residues of 13 аге 1, 3, 4, 9, 10, 12, 
while the nonresidues аге 2, 5, 6, 7, 8, 11. Observe that the integers 


between 1 and 12 are divided equally among the quadratic resi- 
dues and nonresidues; this is typical of the general situation. 


Euler devised a simple criterion for deciding whether an integer 
a is a quadratic residue of a given prime р. 


THEOREM 9-1 (Euler's Criterion). Let p be an odd prime and 


gcd(a , p) = 1. Then a is a quadratic residue of p if and only if 
at- = ] (mod p). 


Proof: Suppose that a is a quadratic residue of p, so that x? == а 
(mod p) admits a solution, call it x. Since gcd(a, p) = 1, evidently 


8cd(x, , p) = 1. We may therefore appeal to Fermat's Theorem to 
obtain 


ar- 02 = (х2)Ф- DAE XD =] (mod p). 


SECTION 9.1 Euler's Criterion 217 


For the opposite direction, assume that а - 12 = 1 
(mod p) holds and let r be a primitive root of р. Then a == r* 
(mod p) for some integer k, with 1 = k < P — 1. It follows that 


r- D2 == qae- 002 = 1 (mod p). 


By Theorem 8-1, the order of r (namely, p — 1) must divide the 
exponent #(р — 1)/2. The implication is that # is an even integer, 
say k = 2j. Hence, 


(r)? = ri = rt = а (mod р), 
making the integer r/ a solution of the congruence x^ = а 
(mod р). This proves that а is a quadratic residue of the prime p. 
Now if p (as always) is an odd prime and gcd (a, p) = 1, then 
(a - 02 — 1)(ae-2 +1) = 42-1: —1=0 (mod p), 


the last congruence being justified by Fermat's Theorem. Hence either 
at- 02 zx 1 (mod р) or a? - 9/7 = —1 (mod p), 


but not both. For, if both congruences held simultaneously, then we 
would have 1 = —1 (mod р), or equivalently, 212, which conflicts with 
our hypothesis. Since a quadratic nonresidue of p does not satisfy 
а" 2 = 1 (mod p), it must therefore satisfy дФ- 12 = —1 (mod D). 
This observation provides an alternate formulation of Euler's Criterion: 
the integer a is a quadratic nonresidue of pif and only if z^- 2 = —1 
(mod p). Я 
Putting the various pieces together, we come up with 


Coroitary. Let p be an odd prime and gcd(a , р) = 1. Then a is 
4 quadratic residue or nonresidue of p according as 


q@e- 02 =Т (mod р) or а? 02 = —] (mod p). 


Example 9-2 
In the case p — 13, we find that 


205-172 = 26 = 64 = 12 = —1 (mod 13). 


Thus, by virtue of the last corollary, the integer 2 is a quadratic non- 


| residue of 13. Since 


303 = 0/2 = 36 = (27)? = 1? = 1 (mod 13), 


218 The Quadratic Reciprocity Law CHAPTER 9 


the same result indicates that 3 is a quadratic residue of 13 and so 
the congruence x? = 3 (mod 13) is solvable; in fact, its two incon- 
gruent solutions are x == 4 and 9 (mod 13). 


There is an alternative proof of Euler's Criterion (due to Diri- 
chlet) which is longer, but perhaps more illuminating. The reasoning 
proceeds as follows: Let a be a quadratic nonresidue of p and let c be 
апу one of the integers 1, 2,. . . , p — 1. By the theory of linear con- 
gruences, there exists a solution c' of сх == a (mod p), with c' also in 
the set {1, 2,. . ., p — 1]. Notice that с’ c, for otherwise we would 
have c? == a (mod р), contradicting what we assumed. Thus, the integers 
between 1 and p — 1 can be divided into (p — 1)/2 pairs, с, с, where 
сс = a (mod p). This leads to (p — 1)/2 congruences, 


cc’, = a (mod p), 
СС; = a (mod p), 


€ = 2 - оз = a (mod p). 
Multiplying them together and observing that the product 
6C160 с п 
is simply a rearrangement of 1.2.3... (p — 1), we obtain 
(p — 1)! = а -  * (mod p). 


At this point, Wilson's Theorem enters the picture; for, (p — 1)! = —1 
(mod p), so that 


ar- = —] (mod p. 


which is Euler's Criterion when a is a quadratic nonresidue of p. 

We next examine the case in which a is a quadratic residue of 
р. In this setting the congruence x? = а (mod p) admits two solutions 
x= x and x = p — x, for some x, with 1 € x, € p — 1. If x, and 
b — х, are removed from the set [1, 2,. . ., p — 1], then the remaining 
b — 3 integers can be grouped into pairs c, с (where c + с) such that 
cc — a (mod p). To these (p — 3)/2 congruences, add the congruence 


alp — x) = —x = —a (mod p). 


SECTION 9.1 Euler's Criterion 219 


Upon taking the product of all the congruences involved, we arrive at 
the relation 


(p — 1)! = ае 12 (mod p). 
Wilson’s Theorem plays its role once again to produce 
ar- 2 = 1 (mod p). 


Summing up, we have shown that a'? - 1/2 = 1 (mod р) ог a - )/2 == 
—1 (mod p) according as a is a quadratic residue or nonresidue of p. 
Euler's Criterion is not offered as a practical test for determining 
whether a given integer is or is not a quadratic residue; the calculations 
involved are too cumbersome unless the modulus is small. But as a crisp 
criterion, easily worked with for theoretical purposes, it leaves little to 
be desired. A more effective method of computation is embodied in the - 
Quadratic Reciprocity Law, which we shall prove later in the chapter. 


PROBLEMS 9.1 


1. Solve the following quadratic congruences: 
(a) x? + 7х +10 =0 (mod 11); 
(b) 3x? + 9x + 7 == 0 (mod 13); 
(c) 5x? + 6х4 1 = 0 (mod 23). 

2. Prove that thé quadratic congruence 6x? + 5x + 1 = 0 (mod р) 
has a solution for every prime p, even though the equation 
6x? + 5x + 1 = 0 has no solution in the integers. 

3. (a) Foran odd prime p, prove that the quadratic residues of p are 

congruent modulo p to the integers 

fos у 


2 2 2 


(b) Verify that the quadratic residues of 17 are 1, 2, 4, 8, 9, 13, 15, 
16. 
4. Show that 3 is a quadratic residue of 23, but a nonresidue of 31. 
5. Given that a is a quadratic residue of the odd prime p, prove that 
(a) ais not a primitive root of p; 
(b) p — ais a quadratic residue or nonresidue of p according as 


p= 1 (mod 4) or p= 3 (mod 4); 
(c) Ир=> (mod 4), then x= + 2+ )/* (mod p) are the solu- 


tions of x? == а (mod p). 


220 


7: 


10. 


11. 


12. 


13. 


: = 1 (mod п), for which the congruence x? = а (mod n) is not 


The Quadratic Reciprocity Law СНАРТЕВ 9. 


Let p be an odd prime and gcd(a , р) = 1. Establish that the quad- 
ratic congruence ах? + bx + c= 0 (mod р) is solvable if and only 
if b? — 4ac is either zero or a quadratic residue-of p. 
If p = 2* + 1 is prime, verify that every quadratic nonresidue of р 
is a primitive root of p. (Hint: Apply Euler's Criterion.) i 
Assume that the integer r is a primitive root of the prime p, where | 
p= 1 (mod 8). 
(a) Show that the solutions of the quadratic congruence x? =2 
(mod p) are given by 


x= t (re-a + yo- oa) (mod p). 


[Hint: First confirm that r*^- ^ = —1 (mod p).] 
(b) Use part (a) to find all solutions to the congruences x? = 2 
(mod 17) and x? = 2 (mod 41). 
(a) If'ab= r (mod p), where ris a quadratic residue of the odi 
prime p, prove that a and b are both quadratic residues of p. 
or both nonresidues of p. 3 
(b) If «a and bare both quadratic residues of the odd prime por 
both nonresidues of p, show that the congruence ax? = b 
(mod p) has a solution. (Hint: Multiply the given congruence \ 
by а where aa’ = 1 (mod p).] 
Let p be an odd prime and gcd(a , p) = gcd(b, p) = 1. Prove that 
either all three of the congruences 


x’ = a (mod p), x? = b (mod p), x? = ab (mod p) 

are solvable or exactly one of them admits a solution. 

(a) Knowing that 2 is a primitive root of 19, find all the quadratic 

residues of 19. [Hint: See the Proof of Theorem 9.1] 

(b) Find the quadratic residues of 29 and 31. 
If n > 2 and gcd(a, п) = 1, then a is called а quadratic residue — 
of n whenever there exists an integer x such that x? = a (mod n). - 
Prove that if a is a quadratic residue of n > 2, then ae? = 1 
(mod п). : 
Show that the result of the previous problem does not provide a у 
sufficient condition for the existence of a quadratic residue of п; in 
other words, find relatively prime integers a and n, with а® | 


"M 


1 


solvable. 


SECTION 9.2 The Legendre Symbol and Из Properties 221 


9.2 THE LEGENDRE SYMBOL AND ITS PROPERTIES 


Euler’s studies on quadratic residues were further developed by the 
French mathematician Adrien Marie Legendre (1752-1833). Legendre’s 
memoir “Recherches d'Analyse Indéterminée” (1785) contains an ac- 
count of the Quadratic Reciprocity Law and its many applications, a 
sketch of a theory of the representation of an integer as the sum of three 
squares and the statement of a theorem that was later to become famous: 
Every arithmetic progression ax + b, where gcd(a , b) = 1, contains an 
infinite number of primes. The topics covered in “Recherches” were 
taken up in a more thorough and systematic fashion in his Essai sur la 
Théorie des Nombres, which appeared in 1798. This represented the first 
"modern" treatise devoted exclusively to number theory, its precursors 
being translations or commentaries on Diophantus. Legendre's Essai was 
subsequently expanded into his Tbéorie des Nombres. The results of his 
later research papers, inspired to a large extent by Gauss, were included 
in 1830 in a two-volume third edition of the Théorie des Nombres. This 
remained, together with the Disquisitiones Aritbmeticae of Gauss, a 
standard work on the subject for many years. Although Legendre made 
no great innovations in number theory, he raised fruitful questions which 
provided subjects of investigation for the mathematicians of the 19th 
century. 

Before leaving Legendre's mathematical contributions, we 
should mention that he is also known for his work on elliptic integrals 
and for his Eléments de Géométrie (1794). In this last book, he at- 
tempted a pedagogical improvement of Euclid's Elements by rear. 
ranging and simplifying many of the proofs without lessening the rigor 
of the ancient treatment. The result was so favorably received that it 
became one of the most successful textbooks ever written, dominating 
instruction in geometry for over a century through its numerous editions 
and translations. An English translation was made in 1824 by the famous 
Scottish essayist and historian Thomas Carlyle, who was in early life a 
teacher of mathematics; Carlyle's translation ran through 53 American 
editions, the last not appearing until 1890. In fact, Legendre's revision 
was used at Yale University as late as 1885, when Euclid was finally aban- 
doned as a text. 

Our futüre efforts will be greatly simplified by the use of the 
symbol (a/p); this notation was introduced by Legendre in his Essai and 
is called, naturally enough, the Legendre symbol. 


222 The Quadratic Reciprocity Law CHAPTER 9 


DEFINITION 9-2. Let p be an odd prime and gcd(a , р) = 1. The 
Legendre symbol (a/p) is defined by 


(ap) = |! if a is a quadratic residue of p 
Pp —1 if a is a quadratic nonresidue of p 


For the want of better terminology, we shall refer to a as the nu: 
merator and pas the denominator of the symbol (а/р). Other standard 


notations for the Legendre symbol are я ог (al p). 


Example 9-3 
Let us look at the prime p — 13, in particular. Using the Legendre 
symbol, the results of an earlier example may be expressed as 


(1/13) = (3/13) = (4/13) = (9/13) = (10/13) = (12/13) =1 
and 


(2/13) = (5/13) = (6/13) = (7/13) = (8/13) = (11/13) 


Mise. 


REMARK: For p| a, we have purposely left the symbol (a/p) undefined. Some 
authors find it convenient to extend Legendre's definition to this case by 
setting (a/p) = 0. One advantage of this would be that the number of so- 
lutions of x? = а (mod D) can then be given by the simple formula 
1+ (a/p). 


The next theorem sets in evidence certain elementary facts con- 
cerning the Legendre symbol. 


THEOREM 9-2, Let p be an odd prime and a and b be integers which 


are relatively prime to p. Then the Legendre symbol bas tbe fol- 
lowing properties: 


(D а= b (mod p), then (a/p) = СЬ). 
(2) (aUp)- 1. 

(3) (a/p) = a-»2 (mod р). 

(4) (ab/p) = (a/p)(b/p). 

(5) (1/р) = 1 and (— МР) = (—1)e-»7, 


SECTION 9.2 The Legendre Symbol and Из Properties 223 


Proof: 1f a = b (mod p), then the congruences x? = a (mod р) 
and x? = b (mod p) have exactly the same solutions, if any at all. 
Thus x? = а (mod р) and x? = b (mod р) are both solvable, or 
neither one has a solution, This is reflected in the statement that 
(a/p) = (b/p). 

As regards (2), observe that the integer a trivially satisfies 
the congruence x? = a*(mod р); hence, (a/p) = 1. Part (3) is just 
the corollary to Theorem 9-1 rephrased in terms of the Legendre 
symbol. We use (3) to establish (4): 


(ab/p) = (ab) - V2 == qo - Орр - 0/2 == (a/p) (b/p) (mod p). 


Now the Legendre symbol assumes only the values 1 or —1. Were 
(ab/p) + (a/p)(b/p), we would have 1 = —1 (mod р) or 2 
= 0 (mod р); this cannot occur, since p > 2. It follows that 


(ab/p) = (a/p) (b/p). 


Finally, we observe that the first equality in (5) is a spe- 
cial case of (2), while the second one is obtained from property 
(3) upon setting а = —1. Since the quantities (—1/p) and 
(—1)Ф- "7 are either 1 or —1, the resulting congruence 


(—1/p) = (—1)Ф- 22 (mod p) 
implies that (—1/p) = (—1)- "7, 


From parts (2) and (4) of Theorem 9-2, we may also abstract the 
relation 


(6) (ab?/p) = (a/p)(b*/p) = (a/p). 
In other words, a square factor which is relatively prime го р can be de- 


leted from the numerator of the Legendre symbol without affecting its 


value. 
Since (p — 1)/2 is even for p of the form 4k + 1 and odd for p 


of the form 42 + 3, the equation (—1/p) = (—1)'^- )^ permits us to 
add a small supplement to Theorem 9-2. 


COROLLARY: If p is an odd prime, then 


1 ifp=1 (mod 4) 
(—1/p) = ži inue (mod 4) 


This corollary may be viewed as asserting that the congruence 
x? = —1 (mod p) has a solution if and only if p is a prime of the form 
4k + 1. The result is not new, of course; we have merely provided the 
reader with a different path to Theorem 5-3. 


224 The Quadratic Reciprocity Law CHAPTER 9 


Example 9-4 
Let us ascertain whether the congruence x? = —38 (mod 13) is 
solvable. This can be done by evaluating the symbol (— 38/13). We 
first appeal to parts (4) and (5) of Theorem 9-2 to write 


(—38/13) = (—1/13)(38/13) = (38/13). 
Since 38 = 12 (mod 13), it follows that 
(38/13) = (12/13). 
Now property (6) above gives 
(12/13) = (3 . 22/13) = (3/13). 
But 
(3/13) = 303 - 0/2 = 36 = (27)? = 1 (mod 13), 


where we have made appropriate use of (3) of Theorem 9-2; hence, 
(3/13) = 1. Inasmuch as (—38/13) = 1, the quadratic congruence 
x? == —38 (mod 13) admits solution. 


The Corollary to Theorem 9-2 lends itself to an application con 
cerning the distribution of primes. 


THEOREM 9-3, There are infinitely many primes of the form 
4k +1, 


Proof: Suppose that there are finitely many such primes; call them 
Pi, Pa. . ., D, and consider the integer 


N= (2рр, «++ p,)? + 1. 
Clearly №15 odd, so that there exists some odd prime p with p| №. 
To put it another way, 
QPP: --- p,)? = —1 (mod p) 


or, if one prefers to phrase this in terms of the Legendre symbol, 
(—1/p) = 1. But the relation (— 1/p) = 1 holds only if p is of the 
form 4k + 1. Hence, bis one of the primes р,. This implies that p, 
divides № — (25,5, ... Р,)?, or РИ 1, a contradiction. The conclu- 
Sion: there must exist infinitely many primes of the form 4£ + 1. 


e 


SECTION 9.2 Тһе Legendre Symbol and Its Properties 225 


We dig deeper into the properties of quadratic residues with 


THEOREM 9-4. If p is an odd prime, then 


pi 
D (wp = 0. 


Hence, there are precisely (p — 1)/2 quadratic residues and 
(p — 1)/2 quadratic nonresidues of p. 


` 
Proof. Let r be a primitive root of p. We know that, modulo p, the 
powers r, rl, . . ., 77! are just a permutation of the integers 1, 2i 
., p — 1. Thus for any a between 1 and р — 1, inclusive, there 
exists a unique positive integer k (1 = k = p — 1), such that a 
= r^ (mod p). By appropriate use of Euler's Criterion, we have 


(1)(a/p) = Сер) = (re - 2 = rn о) каа (7 1* (mod p), 


where, since r isa primitive root of p, 27 92 == —1 (mod p). But 
(a/p) and ( —1)^are equal to either 1 or — 1, so that equality holds 
in (1). Now add up the Legendre symbols in question to obtain 


p-1 prt 


Yap = > (- v= 0, 


a=) ei 
the desired conclusion. 


The proof of Theorem 9-4 serves to bring out the following point, 
which we record as 


Corottary. The quadratic residues of an odd prime p are соп: 
gruent modulo p to the even powers of a primitive root r of p; the 
quadratic nonresidues are congruent to tbe odd powers of r. 


For an illustration of the idea just introduced, we again fall back 
on the prime p — 13. Since 2 is a primitive root of 13, the quadratic 
residues of 13 are given by the even powers of 2, namely, 

2324 28 2:9 
2:255 2: == 10 
26=12 29-1 


226 The Quadratic Reciprocity Law CHAPTER 9 


all congr .ences being modulo 13. Similarly, the nonresidues occur as 
the odd powers of 2: 


21222 2 =11 
2 = 8 2° == 5 
2 = 6 2" = 7, 
Most proofs of the Quadratic Reciprocity Law, and ours as well, 
test ultimately upon what is known as Gauss’ Lemma. While this lemma 


gives the quadratic character of an integer, it is more useful from a the- 


oretical point of view than as a computational device. We State and prove 
it below. 


THEOREM 9-5 (Gauss’ Lemma). Let р be an odd prime and let 
gcd(a, р) = 1. If n denotes the number of integers in the set 


S= 14, 2a,3a,.. (E334 


Wbose remainders upon division by p exceed p/2, then 
(a/p) = (—1)*. 


Proof: Since gcd(a, D) = 1, none of the (p — 1)/2 integers in 515 
congruent to zero and no two are congruent to each other modulo 
p. Let n,. . ., 7, be those remainders upon division by psuch that 
0 < r, € p/2 and 5». . ., Sa be those remainders such that p > s, 
> p/2. Then m + n = (р — 1)/2, and the integers 


n, Ut 0D $8... p—s, 


are all positive and less than 5/2. 
In order to prove that these integers are all distinct, it suf- 


fices to show that no D — sis equal to any r,. Assume to the contrary 
that 


P-5-r 


for some choice of and J. Then there exist integers u and v, with 


18 u, v< (p- 1)/2, Satisfying s= ua (mod p) and 7,75 va (mod 
Р). Hence, : 


(u+ vja=s + 7,— p — 0 (mod р) 


which says that u + y = 0 (mod p). But the latter congruence 
cannot take place, since 1 < utvzp-i 


SECTION 9.2 The Legendre Symbol and Its Properties 227 


The point which we wish to bring out is that the 
(p — 1)/2 numbers 


ooi Te D $5 TP Sa 
are simply the integers 1, 2, . . ., (p — 1/2, not necessarily in 
order of appearance. Thus, their product is (p — 1)/2]!: 
m 
(=) ер 5) 52: р 5) 
manens) Cs) (mod р) 
= mn +++ FSi ++ +S, (mod p). 


But we know that и, . . ., 7» Si» . 5и are congruent modulo p 
to a, 2а,. . .,[(p — 1)/2]а, in some order, so that 


(2-4) 12 (—1)"а.2а... (= 1) a (mod p) 


== (nao aus (2:3) ! (mod p). 
Since [(p — 1)/2]! is relatively prime to p, it may be cancelled from 
both sides of this congruence to give 
12 (—1)"a* - 7 (mod p) 
or, upon multiplying by (—1)", 
ar- 2 = (—1)" (mod p). 
Use of Euler's Criterion now completes the argument: 
(a/p) = a» - 2 = (—1)" (mod p), 
which implies that 
(a/p) = (-1)". 
By way of illustration, let p — 13 and a — 5. Then (p — 1)/2 
= 6, so that 
5 = (5, 10, 15, 20, 25, 30]. 
Modulo 13, the members of $ are the same as the integers 


5, 10, 2, 7, 12, 4. 


228 The Quadratic Reciprocity Law CHAPTER 9 


Three of these are greater than 13/2: hence, n = 3and Theorem 9.5 says 
that 


(5/13) =(-n) == 


Gauss’ Lemma allows us to Proceed to a variety of interesting 
results. For one thing, it provides a means for determining which primes 
have 2 as a quadratic residue, 


THEOREM 9-6. If p is an odd prime, then 


(2/p) = 1 ifp=1 (mod 8) orp =7 (mod 8); 
P T [1 ifp=3 (mod 8) or p=5 (mod 8). 


Proof: According to Gauss’ Lemma, (2/p) = (—1)", where n is the 
number of integers in the set 


ME 


which, upon division by p, have remainders greater than 5/2. The 
members of $ are all less than D, 50 that it suffices to count the 
number that exceed 5/2. For 1 = n = (p — 1)/2, 2k < p/2 if and 
only if ё < p/4, If [ ] denotes the greatest integer function, then 
there are [2/4] integers in S less than 5/2, hence 


zal 
P= wis) 


n= 


integers which are greater than p/2. 


Now we have four possibilities; for, any odd prime has one 
ofthe forms 8k + 1,8&- 3, 82+ 5, orBp + 7. Asimple calculation 
shows that 


ао 
PPO SRS S then n= 4k + 1— [2k + 3) = 4k 4 1— 2k 
í tie = 2k4 1, 

MBS BET 5 феи = det 2 pain 


=4k+2~ (2k+1)=2¢64 i 
[EP T Bk F T tense db 5 Qa 1424 


=4k+3 TOQk 1) = 25 +2. 


СЕ 


SECTION 9.2 The Legendre Symbol and Its Properties 229 


Thus, when p is of the form 8k + 1 or 8k + 7, n is even 
and (2/р) = 1; on the other hand, when p assumes the form 
8k + 3 or 8k + 5, n is odd and (2/p) = —1. 


Notice that if the odd prime p is of the form 8k + 1 (equiva- 
lently, p = 1 (mod 8) or p= 7 (mod 8)), then Ч 


рі 1 (88+ 11-1 _ 64 + 16k _ 
еле HR: F 8k? + 2k, 


which is an even integer; in this situation, (=P - 08 = 1 = (2/p). 
Оп the other hand, if p is of the form 8k + 3 (equivalently, p = 1 
(mod 8) or p = 5 (mod 8)), then 


2 — 2 £ 
p = 1 a лад 1 ART ETS = om e Gb 1, 


which is odd; here, we have (—1)%* == —1 = (2/p). These obser- 
vations are incorporated in the statement of the following corollary to 
Theorem 9-6. 


Coro.tary. Jf p is an odd prime, then 
(2/p) = DAT e, 


It is time for another look at primitive roots. As we have re- 
marked, there is no general technique for obtaining a primitive root of 
an odd prime p; the reader might, however, find the next theorem useful 
on occasion. 


THEOREM 9-7. Ifp and2p + 1 are both odd primes, then the integer 
(—1)Ф- 172 is a primtiive root of 2p + 1. 


Proof: For ease of discussion, letus рига = 2p + 1. We distinguish 
two cases: p= 1 (mod 4) and p= 5 (mod 4). 

If p = 1 (mod 4), then (—1)Ф- 5/22 = 2. Since ¢(q) 
= q-— 1 = 2p, the order of 2 modulo g is one of the numbers 1, 
2, p, ot 2p. Taking note of part (3) of Theorem 9-2, we have 


(2/4) = 2« - »^ = 22 (mod 4). 


But; in the present setting, 4== 3 (mod 8); whence, the Legendre 
symbol (2/g) = —1. It follows that 22 = —1 (mod q) and so 2 
cannot have order p modulo 4. The order of 2 being neither 1, 2, 


230 The Quadratic Reciprocity Law CHAPTER 9 


(22 = 1 (mod q) implies that 413, an impossibility) nor p, we are 
forced to conclude that the order of 2 modulo 4 is 2p. This makes 
2 a primitive root of q. 

We now deal with the case p = 3 (mod 4). This time, 
(—1)0- 022 = —2 and 


(—2) = (-2/q) = (—1/4) (2/4 (mod а). 


Since 4 = 7 (mod 8), the corollary to Theorem 9-2 asserts that 
(—1/q) = —1, while once again we have (2/4) = 1. This leads to 
the congruence (—2)*= — 1 (mod 4). From here on, the argument 
duplicates that of the last paragraph. Without analyzing further, we 
announce the decision: —2 is a primitive root of q. 


Theorem 9-7 indicates, for example, that the primes 11, 59, 107, 
and 179 have 2 as a primitive root. Likewise, the integer —2 serves as a 
primitive root for 7, 23, 47, and 167. 

Before retiring from the field, we should mention another result 
ef the same character: if p and 4p + 1 are both primes, then 2 is a prim- 
itive root of 4p + 1. Thus, to the list of prime numbers having 2 for a 
primitive root, one could add, say, 13, 29, 53, and 173. 

There is an attractive proof of the infinitude of primes of the form 
8k — 1 which can be based on Theorem 9-6. 


THEOREM 9-8. There are infinitely many primes of tbe form 
8b — 1. 


Proof: As usual, suppose that there are only a finite number of such 
primes. Let these be p,, p, -.., b, and consider the integer 


N= (4рр --- p? — 2. 
There exists at least one odd prime divisor p of N, so that - 
(4p,p. - -- р,)? = 2 (mod р) 


or (2/p) — 1. In view of Theorem 9-6, p= +1 (mod 8). If all the 
odd prime divisors of Nwere of the form 8k + 1, then N itself would 
be of the form 16a + 2; this is clearly impossible, since Nis of the 
form 16a — 2. Thus, N must have a prime divisor q of the form 


8k — 1. But q| Nand q| (4p,p, --- Pn)? leads to the contradiction 
that 412. i: 


SECTION 9.2 The Legendre Symbol and Из Properties 231 


: The next result, which allows us to effect the passage from Gauss' 
Lemma to the Quadratic Reciprocity Law, has some independent in- 
terest. 1 


LEMMA. [fp is an odd prime and a an odd integer, with gcd(a , p) 
= 1, then 
(р - 0/2 


(up = (1) (1 ^ 


» 


Proof: We shall employ the same notation as іп the proof of Gauss 
Lemma. Consider the set of integers 


e 


Divide each of these multiples of a by p to obtain 


ka= qup + te, тэри 


Then ka/p = q, + t,/p, so that [ва/р] = qu. Thus Юг 1 = k £ 
(p — 1)/2, we may write ka in the form 


(1) ka = [ka/p\p + ty. 
If the remainder & < p/2, then it is one of the integers n, . . ., 
Tmi if t, > p/2, then it is one of the integers $,..., 5». 
Taking the sum of the equations (1), we get the relation 
(p= 0/2 (p- 12 m n 
(2) У ka= У [ka/pp+ Drt Ds 
&=1 ket &=1 k-i 


It was learned in proving Gauss' Lemma that the (p — 1)/2 num- 
bers 


fias tup ciere prs. 
are just a rearrangement of the integers 1,2,. . ., (p — 1)/2. Hence, 
(рт 2 m " m n 
8 DY k= Dnt Yo-sw=pnt aT. ease 
k-1 k-1 h-1 kai а= 1 


Subtracting (3) from (2) gives 


- 0/2 Ф = 1/2 
(4) (а=) У в-р( » [hup - n) + 2 D s 


LES! kai 


232 The Quadratic Reciprocity Law CHAPTER 9 


Let us use the fact that р = a = 1 (mod 2) and translate this last 
equation into a congruence modulo 2: 
(p- 19/2 (p> 1a 
0. У k=1. ( 07 (ea/p| — п) (тоа 2) 
kail k-1 


or 


(p= 10/2 
n= У) [ka/p| (mod 2). 


eet 
The rest follows from Gauss’ Lemma; for, 
(p= 0/2 
Z ү 
(a/p) = (—1)" = (—1) **: 


as we wished to show. 


|a p] 


For an example of this last result, again consider p — 13 and 

4 — 5. Since (p — 1)/2 — 6, it is necessary to calculate [ka/p] for 
k*1,...,6 

[5/13] = [10/13] = 0; 

[15/13] = [20/13] = [25/13] = 1; 

[30/13] = 2. 
By the lemma, we have 

(5713) == тутж тит): Zr 


confirming what was earlier seen. 


PROBLEMS 9.2 


1. Find the value of the following Legendre symbols: 
(а) (19/23), (b) (—23/59), (c) (20/31), 
(d) (18/43), (e) (—72/131). 
2. Use Gauss's Lemma to compute each of the Legendre symbols below 
(that is, in each case obtain the integer n for which (a/p) = (—1)”): 
(а) (8/1), (b) (7/13), (o (5/19), 
(d) (11/23), (e) (6/31). 
3. For an odd prime p, prove that there are (p — 1)/2 — ф(р) quad- 
ratic nonresidues of p which are not primitive roots of p. 


SECTION 9.2 The Legendre Symbol and Its Properties 233 


4. 


10. 


11. 


12. 


(a) Let p be an odd prime. Show that the Diophantine equation 
x? + ру+а=0, gcd(a,p) = 1, 

has an integral solution if and only if (—4/p) = 1. 

(b) Determine whether x? + 7y — 2 = 0 has a solution in the 
integers. 

Prove that 2 is not a primitive root of any prime of the form p — 

3 . 2" + 1, except when р = 13. [Hint: Use Theorem 9-6.] 

(а) If p is an odd prime and gcd(ab, р) = 1, prove that at least 
one of a, b, or ab is a quadratic residue of p. 

(b) Show that any prime p divides 


(п? — 2)(? — 3)(т — 6) 


for some choice of n > 0. 


. If pis an odd prime, show that 


p-a 

X (ala t+ 1)/р) = 71 

а= 1 
[Hint: If a' is defined by аа = 1 (mod p), then (a(a + 1)/p) 
= ((1 +.a’)/p). Note that 1 + а runs through a complete set of 
residues modulo p, except for the integer 1.] 


. Prove the statements below: 


(a) Ifpand q= 2p + 1 are both odd primes, then —4 is a prim- 
itive root of g. 
(b) If p=1 (mod 4) is a prime, then —4 and (p —1)/4 are both 
quadratic residues of p. 
If p= 7 (mod 8), show that pl 2:7 7 —1. (Hint: By Theorem 9-6, 
1 = (2/p) = 2°- (mod p).] 
Use Problem 9 to confirm that the numbers 2" — 1 are composite 
for = 11, 23, 83, 131, 179, 183, 239, 251. 
Given that pand 4 = 4p + 1 are both primes, prove the following: 
(a) Any quadratic nonresidue of q is either a primtive root of q or 
has order 4 modulo q. [Hint: If a is a quadratic nonresidue of 
q, then —1 = (a/q) = a”? (mod q); hence a has order 1, 2, 
4, p, 2p, ot 4p modulo q.] р 
(b). The integer 2 isa primitive root of q; in particular, 2 is a prim- 
itive root of 13, 29, 53 and 173. 
If r is a primitive root of the odd prime p, prove that the product 
of the quadratic residues of p is congruent modulo p to м - ^ 
while, the product of the nonresidues of p is congruent modulo p 
to z2- ^^, (Hint: Apply the Corollary to Theorem 9-4] 


234 The Quadratic Reciprocity Law CHAPTER 9 


13. Establish that the product of the quadratic residues of the odd prime 
р is congruent modulo p to 1 or —1 according as p = 3 (mod 4) 
or p= 1 (mod 4). [Hint: Use Problem 12 and the fact that r^- »? 
= —1 (mod p). Or, Problem 3(a) of Section 9.1 and the proof of 
Theorem 5-5.] 

14. (a) Ifthe prime p > 3, show that p divides the sum of its quad- 

ratic residues, 
(b) Ifthe prime p 5, show that p divides the sum of the squares 
of its quadratic nonresidues. 

Prove that for any prime p > 5 there exist integers 1 < a, b < 

D — 1 for which 


(a/p) = ((a + 1)/p) = 1. and (b/p) = ((b-- 1)/р) = —1; 


that is, there are consecutive quadratic residues of p and consec- 
utive nonresidues. 
16. (a) Letpbe an odd prime and gcd(a, p) = gcd(k, р) = 1. Show 
that if the equation x? — ау? = kp admits a solution, then 
(a/p) = 1; for example, (2/7) = 1, since 6 — 2. 22 = 
4 «7. [Hint: If x, y satisfy the equation, then (ху - ?)? 
= a (mod р).] 
(b) By considering the equation x? + 5y? = 7, demonstrate that 
the converse of the result in part (a) need not hold. 
(c) Show that, for any prime р = +3 (mod 8), the equation 
x? — 2y? = p has no solution. 
17. If p= 1 (mod 4), prove that 


(p= 0771 


У (ар = 0. 


[Hint: (a/p) = (р — a/p).] 


15 


9.3 QUADRATIC RECIPROCITY 


Let p and gbe distinct odd primes, so that both of the Legendre symbols 
(0/4) and (q/p) are defined. It is natural to inquire whether the value 
of (p/q) can be determined if that of (4/2) is known. To put the question 
more generally, is there any connection at all between the values of these 
two symbols? The basic telationship was conjectured experimentally by 
Euler in 1783-and imperfectly proved by Legendre two years thereafter. 


SECTION 9.3 Quadratic Reciprocity 235 


Using his symbol, Legendre stated this relationship in the elegant form 
that has since become known as the Quadratic Reciprocity Law: , 


p-i1gq-1 


PDD = (-1) > 
Legendre went amiss in assuming a result which is as difficult to prove 
as the law itself, namely, that for any prime p = 1 (mod 8), there exists 
another prime 4 = 3 (mod 4) for which р is a quadratic residue. Un- 
daunted, he attempted another proof in his Essai sur la Théorie des 
Nombres (1798); this one too contained a gap, since Legendre took for 
granted that there are an infinite number of primes in certain arithmet- 
ical progressions (a fact eventually proved by Dirichlet in 1837, using 
in the process very subtle arguments from complex variable theory). 
At the age of eighteen, Gauss (in 1795), apparently unaware of 
the work of either Euler or Legendre, rediscovered this reciprocity law 
and, after a year’s unremitting labor, obtained the first complete proof. 
“Tt tortured me,” says Gauss, “for the whole year and eluded: my most 
strenuous efforts before, finally, I got the proof explained in the fourth 
section of the Disquisitiones Arithmeticae.” In the Disquisitiones Arith- 
meticae—which was published in 1801, although finished in 1798— 
Gauss attributed the Quadratic Reciprocity Law to himself, taking the 
view that a theorem belongs to the one who gives the first rigorous dem- 
onstration. The indignant Legendre was led to complain: “This exces- 
sive impudence is unbelievable in a man who has sufficient personal 
merit not to have the need of appropriating the discoveries of others.” 
All discussion of priority between the two was futile; since each clung 
to the correctness of his position, neither took heed of the other. Gauss 
went on to publish five different demonstrations of what he called “the 
gem of higher arithmetic," while another was found among his papers. 
The version presented below, a variant of one of Gauss' own arguments, 
is due to his student, Ferdinand Eisenstein (1823-1852). The proof is 
complicated (and it would perhaps be unreasonable to expect an easy 
proof), but the underlying idea is simple enough. 


THEOREM 9-9 (Gauss' Quadratic Reciprocity Law). If p and 4 are 
distinct odd primes, then 
path te 
(р/а) (а/р) -(-0* * 
Proof: Consider the rectangle in the xy coordinate plane whose 
vertices are (0,0), (p/2, 0), (0, 4/2), and (p/2, q/2). Let R denote 
the region within this rectangle, not including any of the bounding 


5 


236 The Quadratic Reciprocity Law CHAPTER 9 


lines. The general plan of attack is to count the number of lattice 
points (that is, the points whose coordinates are integers) inside 
Rin two different ways. Since pand gare both odd, the lattice points 
in R consist of all points (z, m), where 1 € п < (p — 1)/2 and 
1=т = (а- 1)/2; the number of such points is clearly 


Pc TAE 
ОАФ 2:41 

Now the diagonal D from (0, 0) to (5/2, 4/2) has the equa- 
tion y = (g/p)x, or equivalently, py = qx. Since gcd(p, а) = 1, 
none of the lattice points inside R will lie on D. For p must divide 
the x coordinate of any lattice point on the line ру = ах, and а 
must divide из y coordinate; there are no such points in К. Suppose 
that 7, denotes the portion of Rwhich is below the diagonal D, and 
T, the portion above. By what we have just seen, it suffices to count 
the lattice points inside each of these triangles. 

The number of integers in the interval 0 < J < kq/p is 
equal to (&q/p]. Thus, for 1 = k < (p — 1)/2, there are precisely 
[&q/ p) lattice points in T, directly above the point (k, 0) and below 
D; in other words, lying on the vertical line segment from (k, 0) to 


(k, kq/p). It follows that the total number of lattice points con- 
tained in 7, is 


Ф - 0/2 


> №. 


— PI HA 


SECTION 9.3 Quadratic Reciprocity 237 


A similar calculation, with the roles of p and ginterchanged, shows 
that the number of lattice points within T; is 


(9 = 022 


У w/a. 
тел 
This accounts for all of the lattice points inside К, so that 
БР (p= 1072 ална 
т 2 [вар + У 1/4). 
= | Ј=1 
The time has come for Gauss’ Lemma to do its duty; 
49 - 1/2 (pr 02 
X wa X 
ODUA -(-2)-'* "(7)" 
(q— 0/2 ip- na 


Z wat ми 
= (—1) jet ъ= 1 


Vy pj 


p-iq-1 


= (-1) ONE DY 
The proof of the Quadratic Reciprocity Law is now complete. 
An immediate consequence of this is 


Сокоилкт 1. If p and q are distinct odd primes, then 


A 1 ifp = 1 (mod:4) or q= 1 (mod 4) 
(p/d (a/p) =1ўр= а= 3 (тоа 4) 


Proof: The number (p — 1)/2 - (4 — 10/2 is even if and only if at 
least one of the integers p and q is of the form 4k + 1; if both are 
of the form 4k + 3, then (p — 1)/2 - (q — 1)/2 is odd. 


Multiplying each side of the Quadratic Reciprocity equation by 
(q/p) and using the fact that (g/p)? = 1, we could also formulate this 
as 


Сокоцакх 2. Jf p and q are distinct odd primes, then 


wip =( Ур=1 (mod 4) or g= 1 (mod 4) 
4) | —(g/p) ifp = 473 (mod 4) 


238 The Quadratic Reciprocity Law CHAPTER 9 


Let us see what this last series of results accomplishes. Take p 
to be an odd prime and а # +1 to be an integer not divisible by p. 
Suppose further that а has the factorization 
a= +2%p,"p," Od p. 
where the р, are distinct odd primes. Since the Legendre symbol is mul- 
tiplicative, 


(a/p) = (x/p)(2/p)^(p/p)^ ... (p,/p*. 


In order to evaluate (а/р), we have only to calculate each of the symbols 
(—1/p), (2/p), and (p,/p). The values of (—1/p) and (2/p) were dis- 
cussed earlier, so that the one stumbling block is (p,/p), where p, and 
p are distinct odd primes; this is where the Quadratic Reciprocity Law 
enters. For Corollary 2 allows us to replace (p,/p) by a new Legendre 
symbol having a smaller denominator. Through continues inversion and 
division, the computation can be reduced to that of the known quan- 
tities 
(—1/4), (1/4), and (2/4): 


This is all somewhat vague, of course, so let us look at a concrete ex- 
ample. 


Example 9-5 
Consider the Legendre symbol (29/53), for instance. Since both 29 
= 1 (mod 4) and 53 = 1 (mod 4), we see that 


(29/53) = (53/29) = (24/29) = (2/29) (3/29) (4/29) 
= (2/29) (3/29). 


With reference to Theorem 9-6, (2/ 29) = —1, while inertia again, 
(3/29) = (29/3) = (2/3)= —1, 


where we used the congruence 29 = 2 (mod 3). The net effect is 
that 


(29/53) = (2/29) (3/29) = (—1)(-1) = 1. 


The Quadratic Reciprocity Law provides a very satisfactory answer 
to the problem of finding all odd primes p * 3 for which 3 is a quadratic 
residue. Since 3 = 3 (mod 4), Corollary 2 above implies that 


sA (0/3) if p= 1 (mod 4) 
(3/p) | — (b/3) if p= 3 (mod 4). 


SECTION 9.3 Quadratic Reciprocity 239 


Now p= 1 (mod 3) or p=2 (mod 3). By Theorems 9-2 and 9-6, 


ўа, 1 if p= 1 (mod 3) 
(p/3) fos if p= 2 (mod 3) 


the implication of which is that (3/p) = 1 if and only if 


(1) p=1(mod4) and p=1 (mod 3), 

or / 

(2) p=3(mod4) and p=2 (mod 3). 

The restrictions in (1) are equivalent to requiring that p= 1 (mod 12) 
while those in (2) are equivalent to p= 11 = —1 (mod 12). The upshot 
of all this: 


THEOREM 9-10. Jf p # 3 is an odd prime, then 


ag 1 ifp= +1 (mod 12) 
= т ppm +5 (mod 12) 


Example 9-6 
The purpose of this example is to investigate the existence of $0: 
lutions of the congruence 


x? == 196 (mod 1357). 
Since 1357 = 23 . 59, the given congruence is solvable if and only 
if both 
x? = 196 (mod 23) and x? == 196 (mod 59) 


are solvable. Our procedure is to find the values of the Legendre 


symbols (196/23) and (196/59). 
The evaluation of (196/23) requires the use of Theorem 


9-10: 
(196/23) = (12/23) = (3/23) = 1. 
Thus, the congruence х? = 196 (mod 23) admits a solution. As 


regards the symbol (196/59), the Quadratic Reciprocity Law en- 
ables us to write 


(196/59) = (19/59) = —(59/19) = —(2/19) = —(~1) = 1. 


It is therefore possible to solve x? = 196 (mod 59) and, in con- 
sequence, the congruence x? = 196 (mod 1357) as well. 


240 The Quadratic Reciprocity Law | CHAPTER 9 


Let us turn to a quite different application of these ideas. At an 
earlier stage, it was observed that if F, = 2?" + 1, n > 1, isa prime, then 
2 is not a primitive root of F,. We now possess the means to show that 
the integer 3 serves as a primitive root of any prime of this type. 

As a first step in this direction, note that any F, is of the form 
12k + 5. A simple induction argument confirms that 4" == 4 (mod 12) 
for m = 1,2,. . .; hence, we must have 


Е, = 22" + 1 = 22" + | = 4" + 1 == 5 (mod 12). 
If F, happens to be prime, then Theorem 9-10 permits the conclusion 
(S/E) mmis 
or, using Euler's Criterion, 


‘n> == —1 (mod F,). 
32 


Switching to the phi-function, the last congruence says that 
3944? = —1 (mod F,). 


From this, it may be inferred that 3 has order ¢(F,) modulo F,, and so 
3 is a primitive root of F,. : 


PROBLEMS 9.3 


1. Evaluate the following Legendre symbols: 
(a) (71/73), (b) (—219/383), (c) (461/773), 
(d) (1234/4567), (e) (3658/12703). [Hint: 3658 = 2. 31. 59] 
2. Prove that 3 is a quadratic nonresidue of all primes of the form 
22" + 1, as well as all primes of the form 2^ — 1, where pis an odd 
prime. [Hint: For all n, 4" == 4 (mod 12).] 
3. Determine whether the following quadratic congruences are solv- 
able: 
(а) х2 = 219 (mod 419). 
(b) 3x? + 6х + 5 =0 (mod 89). 
(c) 2x? + 5х — 9 = 0 (mod 101). 
4. Verify that if p is an odd prime, then 


cup = | 1Ир=1 (mod 8) or р==3 (той 8) 
—1Ер==5 (шой 8) or p=7 (mod 8) 


SECTION 9.3 Quadratic Reciprocity — . 241 


5: 


10. 


11. 


12. 


(a) Prove that if p > 3 is an odd prime, then 


T d: 1 if p= 1 (mod 6) 

(=3/p) | —1 if p=5 (mod 6) 

(b) Using part (a), show that there are infinitely many primes of 
the form 6k + 1. [Hint: Assume that py, Pz, - . - » pr are all the 
primes of the form 6k + 1 and consider the integer N = 
(2pip2 +++ p + 5] 

Use Theorem 9-2 and Problems 4 and 5 to determine which primes 

can divide each of 7? + 1, и? + 2, t? +3 for some value of n. 


. Prove that there exist infinitely many primes of the form 8k + 3. 


[Hint: Assume that there are only finitely many primes of the form 
8k + 3, say Du Po «o Pe and consider the integer N = 


(pi +++ р)? + 2] 


. Find a prime number p which is simultaneously expressible in the 


form x? + y?, м? + 20°, and r? + 352. 
[Hint: (—1/p) = (-2/Р) = (—3/p) = 1] 


. Ifpand gare odd primes satisfying p = 4 + 4afor some a, establish 


that 
(a/p) = (a/a) 


and, in particular, that (6/37) = (6/13). [Hint: Note that (a/p) 
= (—q/p) and use the Quadratic Reciprocity Law.) 
Establish each of the following assertions: 

(а) (5/p) = 1 if and only if p= 1,9, 11, or 19 (mod 20); 

(b) (6/p) =1 if and only if p= 1,5, 19, or 23 (mod 24); 

(с) (7/p) = 1 if and only if p= 1, 3,9, 19, 25, or 27 (mod 28). 
Prove that there are infinitely many primes of the form 5k — 1. (Hint: 
For any n > 1, the integer 5(n!)? — 1 has a prime divisor p > 7 
which is not of the form 5 + 1; hence, (5/p) = 1] 

Verify the following: 

(a) The prime divisors p * 3 of the integer я? —п + 1 аге ofthe 
form 6k + 1. [Hint: IE pl r£? — n + 1, then (2n — 1)? = —3 
(mod p).] 

(b) The prime divisors p * 5 of the integer m + п- are of the 
form 10k + 1 or 10k + 9. 

(c) The prime divisors p of the integer 2n(n + 1) + 1are of the 
form p = 1 (mod 4). [Hint: If plan(n +1) +1, then 
(2n + 1 = —1 (mod p).] 

(d) The prime divisors p of the integer 


3n(n + 1) + 1are of the 
form p= 1 (mod 6). : 


242 


13. 


14. 


15. 


16. 


17. 


18. 


19 


20. 


The Quadratic Reciprocity Law CHAPTER 9 


(a) Show that if p is a prime divisor of 839 = 38? — 5 . 112, then 
(5/p) = 1. Use this fact to conclude that 839 is a prime 
number. [Hint: It suffices to consider those primes р < 29.] 

(b) Prove that 397 = 20? — 3 and 733 = 29: — 3 . 6 are both 
primes. 

Solve the quadratic congruence x? = 11 (mod 35). (Hint: After 
solving x? = 11 (mod 5) and x? = 11 (mod 7), use the Chinese 
Remainder Theorem.] 

Establish that 7 is a primitive root of any prime of the form p = 
21" + 1. (Hint: Since p= 3 or 5 (mod 7), (7/p) = (р/7) = 10) 
Let aand b> 1 be relatively prime integers, with b odd. If b = рр, 
++ +p, is the decomposition of b into odd primes (not necessarily 
distinct) then the Jacobi symbol (a/b) is defined by 


(a/b) = (a/p,)(a/p,) ++: (а/р,), 


where the symbols on the right-hand side of the equality sign are 
Legendre symbols, Evaluate the Jacobi symbols 


(21/221), (215/253), and (631/1099). 


Under the hypothesis of the previous problem, show that if a is a 
quadratic residue of b, then (a/b) = 1; but, the converse if false. 
Prove that the following properties of the Jacobi symbol hold: If b 
and b' are positive odd integers and gcd(aa’ , bb’) = 1, then 

(a) a= а (mod b) implies that (a/b) = (a/b); 

(b) (ad/b) = (a/b)(a'/ b; 

(c) (a@/bb') = (a/b)(a/B); 

(d) (a?/b) = (a/b?) = 1; 

(е) (1/5) = 1 

(D (—1/B) = (—1)'*7" 4 Hint: If wand vare odd integers, then 

(u — 1)/2 + (v= 1)/2 = (uv — 1)/2(mod 2)] 
(8) (2/6) = (—1)'*- ^ [Наш If wand vare odd integers, then 
Ge — 1)/8 + (v? = 1)/8 = [( uv)? — 1/8 (mod 2).] 
Derive the Generalized Quadratic Reciprocity Law: If a and b are 
relatively prime positive odd integers, each greater than 1, then 
@-1b-1 
(a/b)(b/a) = (-1) 27727, 

(Hint: See the hint in Problem 18(f).] 

Using the Generalized Quadratic Reciprocity Law, determine 
whether the congruence x? = 231 (mod 1105) is solvable. 


SECTION 9.4 Quadratic Congruences with Composite Moduli 243 


9.4 QUADRATIC CONGRUENCES WITH COMPOSITE MODULI 


So far in the proceedings, quadratic congruences with (odd) prime 
moduli have been of paramount importance. The remaining theorems 
broaden the horizon by allowing a composite modulus. To start, let us 
consider the situation where the modulus is a power of a prime. 


THEOREM 9-11. If p is an odd prime and gcd(a , р) = 1, then the 
congruence 


x? = a (mod р"), п2 1 
bas a solution if and only if (a/p) = 1. 
1904 


\ Proof As is common with many “if and only if” theorems, one half 
of the proof is trivial while the other half requires considerable 
effort: If x? = а (mod p") has a solution, then so does x = а 
(mod p)—in fact, the same solution—whence (a/p) = 1. 

For the converse, suppose that (а/р) = 1. We argue that 
x? = a (mod p") is solvable by inducting on n. If n = 1 there is 
really nothing to prove; indeed, (а/р) = 1 is just another way of 
saying that x? == a (mod р) can be solved. Assume that the result 
holds for n = k = 1, so that x? = a (mod f^) admits a solution %. 
Then 


x? = at bp 


for an appropriate choice of b. In passing from kto k + 1, we shall 
use x, and b to write down explicitly a solution to the congruence 


x? = а (mod р**'). 
Towards this end, we first solve the linear congruence 


2my = —b (mod р), 


obtaining a unique solution yẹ modulo p (this is certainly possible, 
since gcd(2% , р) = 1). Next, consider the integer 


х= p. 
Upon squaring this integer, we get 


(x + рд? = х? + Zayb + р" 
= a + (b+ 2x)p* + yop- 


244 The Quadratic Reciprocity Law — CHAPTER9 | 


But p| (В + 2жу»), from which it follows that 
x? = (x + yop")? = a (mod p**'). 
Thus, the congruence x? = a (mod f") has a solution for n = 
k + 1 and, by induction, for all positive integers n. 
Let us run through a specific example in detail. The first step in 
obtaining a solution of, say, the quadratic congruence 
x? = 23 (mod 7?) 


is to solve x? = 23 (mod 7), or what amounts to the same thing, the 
congruence 


х? == 2 (mod 7). 


Since (2/7) = 1, a solution surely exists; іп fact x, = 3 is an obvious 
choice. Now x,? can be represented as 


Bim 9m eau (ат, 


50 that b = —2 (in our special case, the integer 23 plays the role of a). 
Following the proof of Theorem 9-11, we next determine y so that 


6y = 2 (mod 7); 


that is, 3y = 1 (mod 7). This linear congruence is satisfied by y = 5. 
Hence, 


№+7%=3+7.5=38 


serves as а solution to the original congruence x? = 23 (mod 49). It 
should be noted that —38 = 11 mod (49) is the only other solution. 
If, instead, the congruence 


x? = 23 (mod 7) 
were proposed for solution, we would start with 
x? = 23 (mod 72), 
obtaining a solution x, = 38. Since 
382 = 23 + 29 - P, 


the integer b = 29. We would then find the unique solution у = 1 of 
the linear congruence 


76y = —29 (mod 7). 


SECTION 9.4 Quadratic Congruences with Composite Moduli 245 


Then x? = 23 (mod 73), is satisfied by 
X + ya 72 = 38 +1. 49 = 87, 


as well as —87 == 256 (mod 72). 
Having dwelt at length on odd primes, let us now take up the 
case p — 2. The next theorem supplies the pertinent information. 


THEOREM 9-12. Let a be an odd integer. Then 


(1) x? = a (mod 2) always bas а solution; 

(2) x= a (mod 4) bas a solution if and only ifa= 1 (mod 4); 

(3) х? == a (mod 2"), for n = 3, bas a solution if and only if a = 
1 (mod 8). 


Proof: The first assertion is obvious. The second depends on the 
observation that the square of any odd integer is congruent to 1 
modulo 4. Thus, x? = a (mod 4) can be solved only when a is of 
the form 4k + 1; in this event, there are two solutions modulo 4, 
namely x = 1 and x = 3. 

Now consider the case in which n = 3. Since the square 
of any odd integer is congruent to 1 modulo 8, we see that for the 
congruence x? = a (mod 2") to be solvable it is necessary that a 
should be of the form 8k + 1. To go the other way, let us suppose 
that a = 1 (mod 8) and proceed by induction on я. When 7 = 3, 
the congruence x? == a (mod 2") is certainly solvable; indeed, each 
of the integers 1, 3, 5, 7 satisfies x^ = 1 (mod 8). Fix a value of 
n > 3 and assume, for the induction hypothesis, that the congru- ` 
ence x? = a (mod 2") admits a solution x, Then there exists in 
integer b for which 


x = a +b". 


Since a is odd, so is the integer x, It is therefore possible to find 
a unique solution y, of the linear congruence 


xy = —b (mod 2). 
We argue that the integer 
X - х + x 
satisfies the congruence x? = a (mod 2"* ). Squaring yields 


(x, + 2" = 1) = we + MHD" + 02" 77 
PES at (b+ Xo) 2" + 394227 d 


246 The Quadratic Reciprocity Law CHAPTER 9 


By the way y was chosen, 2 | (b +23), hence 
х? = (х Tan 7 1)? == а (mod 2" + !) 
(one also uses the fact that 2n — 2 = п + 1 + (n= 3) > лп 


+1). Thus x? = а (mod 2”+ !) is solvable, completing the induc- 
tion step and the proof. 


To illustrate: the congruence x? ==5 (mod 4) has a solution, but 
x? = 5 (mod 8) does not; on the other hand, x? = 17 (mod 16) and 
x? = 17 (mod 32) are both solvable. 

In theory, we can now completly settle the question of when 
there exists an integer x such that 


x? =-a (mod n), gcd(a, n) = 1, п> 1. 
For suppose that n has the prime-power decomposition 
n= 2%p,"p." +. ph, k = 0, k, > 0 


where the p, are distinct odd primes. Since the problem of solving the 
quadratic congruence x? = a (mod n) is equivalent to that of solving 
the system of congruences 

x? = а (mod 25), 

x? = a (mod p,"), 


x? = a (mod p,"”), 


our last two results may be combined to give the following general con- 
clusion. 


THEOREM 9-13. Let n = 2p," ... p,” be the prime factorization of 
n> 1 and let gcd(a , п) = 1. Then x? = a (mod n) is solvable if 
and only if 


(1) (a/p) =1fori=1,2,...,7; 
(2) а=1 (mod 4) if4|n, but8 Y n; a= 1 (mod 8) if8lm. 


SECTION 9.4 Quadratic Congruences with Composite Moduli 247 


PROBLEMS 9.4 


1. 


хр 


10. 


(a) Show that 7 апа 18 are the only incongruent solutions of 
x? == —1 (mod 5?). 
(b) Use part (a) to find the solutions of x* = —1 (mod 53). 


. Solve each of the following quadratic congruences: 


(а) x? == 7 (mod 3°); 

(b) x? == 14 (mod 55); 

(c) x? = 2 (mod 7°). 

Solve the congruence x? = 31 (mod 11*). 

Find the solutions of x? + 5x + 6 = 0 (mod 5°) and x? + x + 3 
= 0 (mod 3?). 


. Prove that if the congruence x? = a (mod 2"), where n = 3, has 


a solution, then it has exactly four incongruent solutions. (Hint: 
If x is any solution, then the four integers x», —23 № + 2" ', 
—x, + 2"-! are incongruent modulo 2" and comprise all the so- 
lutions.] 

From 23? = 17 (mod 27), find three other solutions of the congru- 
ence x? = 17 (mod 27). 

First determine the values of а for which the congruences below 
are solvable and then find the solutions of these congruences: 

(a) x? = а (mod 2“); 

(b) x? = a (mod 2°); 

(c) x= a (mod 25). 

For fixed n > 1, show that all the solvable congruences x? = а 
(mod n) have the same number of solutions. 

(a) Without actually finding them, determine the number of 
solutions of the congruences x* = 3 (mod 11? - 232) and 
x? = 9 (mod 23 - 5: 5). 

(b) Solve the congruence x? = 9 (mod 23 - 3 - 52). 

(a) For an odd prime p, prove that the congruence 2x? + 1=0 
(mod p) has a solution if and only if p= 1 or 3 (mod 8). 

(b) Solve the congruence 2x* + 1 — 0 (mod 11?). (Hint: Con- 
sider integers of the form x, + 115, where х, is a solution of 
2x? + 1==0 (mod 11) ] 


M 


idi 
y 
AEA 


"In most sciences 
one generation tears down 
wbat anotber bas built 
and wbat one bas establisbed 
anotber undoes. 


In Matbematics alone 


eacb generation builds 


a new story 


to tbe old structure." 


HERMANN HANKEL 


10.1 THE SEARCH FOR PERFECT NUMBERS 


The history of the theory of numbers abounds with famous conjectures 
and open questions. The present chapter focuses on some of the in- 
triguing conjectures associated with perfect numbers. A few of these have 
been satisfactorily answered, but most remain unresolved; all have stim- 
ulated the development of the subject as a whole. 

The Pythagoreans considered it rather remarkable that the 
number 6 is equal to the sum of its positive divisors, other than itself: 


6=1 +2 +3. 


The next number after 6 having this feature is 28; for the positive divisors 
of 28 are found to be 1, 2, 4, 7, 14, and 28, and 


28 =1+2+4+7+ 14. 
In line with their philosophy of attributing mystical qualities to num- 


bers, the Pythagoreans called such numbers "perfect." Stated precisely: 


* DEFINITION 10-1. A positive integer 7 is said to be perfect if n is 
equal to the sum of all its positive divisors, exciuding 7 itself. 


The sum of the positive divisors of an integer n, each of them 
less than n, is given by o(m) — я. Thus, the condition “n is perfect" 
amounts to asking that c(72). — п = n, or equivalently, that 

a(n) = 2n. 
For example, we have 


в(6) =1+2+3+6=2.6 
and 0(28) =1+2+4+7+14+28=2. 28 


so that 6 and 28 are both perfect numbers. 

For many centuries, philosophers were more concerned with the 
mystical or religious significance of perfect numbers than with their 
mathematical properties. Saint Augustine explains that although God 
could have created the world all at once, He preferred to take six days 


250 


Perfect Numbers CHAPTER 10 251 


because the perfection of the work is symbolized by the (perfect) number 
6. Early commentators on the Old Testament argued that the perfection 
of the Universe is represented by 28, the number of days it takes the 
moon to circle the earth. In the same vein, the 8th century theologian 
Alcuin of York observed that the whole human race is descended from 
the eight souls on Noah's Ark and that this second Creation is less per- 
fect than the first, 8-being an imperfect number. 

Only four perfect numbers were known to the ancient Greeks. 
Nicomachus in his Zntroductio Aritbmeticae (circa 100 A.D.) lists 


P, — 6, P, — 28, P, — 496, P, — 8128. 


He says that they are formed in an "orderly" fashion, one among the 
units, one among the tens, one among the hundreds, and one among 
the thousands (that is, less than 10,000). Based on this meager evidence, 
it was conjectured that 


1. the nth perfect number P, contains exactly n digits; and 
2. the even perfect numbers end, alternately, in 6 and 8. 


Both assertions are wrong. There is no perfect number with 5 
digits; the next perfect number (first given correctly in an anonymous 
15th century manuscript) is 


P, = 33,550,536. 
While the final digit of P; is 6, the succeeding perfect number, namely 
i 8,589,869,056 


ends in 6 also, not 8 as conjectured. To salvage something in the positive 
direction, we shall show later that the even perfect numbers do always 
end in 6 or 8—but not necessarily alternately. 

If nothing else, the magnitude of Ps should convince the reader 
of the rarity of perfect numbers. It is nor yet known whether there are 
finitely many or infinitely many of them. 

The problem of determining the general form of all perfect 
numbers dates back almost to the beginning of mathematical time. It 
was partially solved by Euclid when in Book IX of the Elementshe proved 
that if the sum 


e 24259 d are p 


(252 Perfect Numbers CHAPTER 


is a prime number, then 2‘~ 1p is a perfect number (of necessity even), 
For instance, 1 + 2 + 4 = 7 is a prime; hence 4 - 7 = 28 is a perfect. 
number. Euclid’s argument makes use of the formula for the sum of ad 
geometric progression 


а BAN 2-126 р 


reads as follows: If 2 — 1 is prime (k > 1), then п = 2^7 (2^ — 1) is _ 
a perfect number. About 2000 years after Euclid, Euler took a decisive ' 

step in proving that all even perfect numbers must be of this type We 

incorporate both these statements in our first theorem. | 


THEOREM 10-1. /f2* — 1 is prime (k > 1), then n = 2^- (2^ — 1) 
is perfect and every even perfect number is of this form. 


Proof: Let 2* — 1 = p, a prime, and consider the integer п = 
2* тр. Since gcd (2—1, р) = 1, the multiplicativity of « (as well as 
Theorem 6-2) entails фа ^ i 
a(n) = e(2* - p) = c(2*- )e(p) 
-Q'-Dop-n) 
= (2*— 1)2* = 2р, 
making 7 a perfect number. ў 
For the converse, assume that 7 is an even perfect number. 


We may write n as n = 2+- 1m, where m is an odd integer and 
k = 2. It follows from gcd(2*-!, т) = 1 that 


a(n) = «(2^ - im) = о 2^- 1)а(т) = (2* — 1)с(т), 
while the requirement for a number to be perfect gives 
AG) -m2n-2*m. 
Together, these relations yield 
2*т =. = 1)e(m), “ij 


which is simply to say that (2* — 1) |2*m. But 2+ — 1 and 2^ are É 
relatively prime, whence (2* — 1) | т; say, m = (2* — ПМ. Now 
the result of substituting this value of т into the last-displayed 
equation and cancelling 2* — 1 is that o(m) = 2*M. Since m and 
Mare both divisors of m (with M — m), we have 


2*M = a(n) = m + M = 24M, 


SECTION 10.1 The Search for Perfect Numbers 253 


leading to c(m) = т + M. The implication of this equality is that 
m has only two positive divisors, to wit, Mand m itself, It must be 
that m is prime and М = 1; in other words, т = (2* — эм = 
2* — 1 is a prime number, completing the present proof. 


Since the problem of finding even perfect numbers is reduced 
to the search for primes of the form 2* — 1, a closer look at these integers 
might be fruitful. One thing that can be proved is that if 2^ — 1 isa prime 
number, then the exponent k must itself be prime. More generally: 


LEMMA. Jf a* — 1 is prime (a > 0, k= 2), then a = 2 and k is also 
prime. 


Proof. It can be verified without difficulty that 
а i= (ar (att tat tte +at1), 


where, in the present setting, 


д-1+ 2-24... +а+1>а+1> 1: 


Since by hypothesis a* — 1 is prime, the other factor must be 1; 


that is, а — 1 = 1sothat = 2. 
If k were composite, then we could write k = rs, with 


1 < rand 1 < s Thus, 
а= = (а) 1 

ауа то ата + а+1) 
and each factor оп the right is plainly greater than 1. But this vio- 
lates the primality of a* — 1, so that ё must by contradiction be 
prime. 


For p = 2,3, 5,7, the values 3, 7, 31, 127 of 2^ — 1 are primes, 
so that 
2(22—1) = 6, 
22(23 — 1) = 28, 
24025 — 1) = 496, — 
28(27 — 1) = 8128 


are all perfect numbers. 


254 Perfect Numbers CHAPTER 10 


Many early writers erroneously believed that 2^ — 1 is prime for 
every choice of the prime number p. But in 1536, Hudalrichus Regius 
in a work entitled Utriusque Arithmetices exhibits the correct factori- 
zation 


2" — 1 = 2047 = 23 . 89. 


If this seems a small accomplishment, it should be realized that his cal- 
culations were in all likelihood carried out in Roman numerals, with the 
aid of an abacus (not until the late 16th century did the Arabic numeral 
system win complete ascendancy over the Roman one). Regius also gave 
p = 13 as the next value of p for which the expression 22 — 1 is a prime. 
From this, one obtains the fifth perfect number 


2'2(2'3 — 1) = 33,550,336. 


One of the difficulties in finding further perfect numbers was the un- 
· availability of tables of primes. In 1603, Pietro Cataldi, who is remem- 
bered chiefly for this invention of the notation for continued fractions, 
published a list of all primes less than 5150. By the direct procedure of 
dividing by all primes not exceeding the square root of a number, Ca- 
taldi determined that 2" — 1 was prime and, in consequence, that 


2'*(2" — 1) = 8,589,869,056 


is the sixth perfect number. 

A question which immediately springs to mind is whether there 
are infinitely many primes of the type 2^ — 1, with pa prime. If the answer 
were in the affirmative, then there would exist an infinitude of (even) 
perfect numbers. Unfortunately this is another famous unresolved 
problem. 

This appears to be as good a place as any at which to prove our 
theorem on the final digits of even perfect numbers. 


THEOREM 10-2. An even perfect number n ends in the digit 6 or 8; 
that is, n= 6 (mod 10) or n=8 (mod 10). 


Proof: Being an even perfect number, 7 may be represented as п 
= 2+- (2^ — 1), where 2* — 1 is a prime. According to the last 
lemma, the exponent k must also be prime. If = 2, then n = 6 
and the asserted result holds. We may therefore confine our atten- 
tion to the case k > 2. The proof falls into two parts, according as 
k takes the form 4m + 1 or ám + 3. 


asinine 


SECTION 10.1 The Search for Perfect Numbers 255 


If k is'of the form 4m + 1, then 


п = 24т(24 +1 = 1) 
= 28" +1 — 24" = 2. 162" — 16”. 
А straightforward induction argument will make it clear that 16' 


= 6 (mod 10) for any positive integer t. Utilizing this congruence, 
we get 


п=2.6—6=6 (mod 10). 
Now, in the case in which k = 4m + 3, 


п = 24" +2(24т+3 — 1) 


= 2вт+$ — 24тт2=2. 162" +1 — 4. 16", 


Falling back on the fact that 16' == 6 (mod 10), we see that 
п=2.6-4.6=- 12=8 (mod 10), 


Consequently, every even perfect number has a last digit equal to 
6 or to 8. 


A little more argument establishes a sharper result, namely that 
any even perfect number n = 2*7 1(2* — 1) always ends in the digits 6 
or 28. Since an integer is congruent modulo 100 to its last two digits, it 
suffices to prove that, if k is of the form 4m + 3, then n= 28 (mod 100). 
To see this, note that 

24-1 = 2" +2 = 16". 4=6 . 4 = á (mod 10). 

Moreover, for k > 2, we have 412*- ! and so the number formed by the 
last two digits of 2'~' is divisible by 4. The situation is this: the last digit 
of 24-1 is 4, while 4 divides the last two digits. Moduto 100, Ше various 


possibilities are 
2*- 1 = 4, 24, 44, 64, ог 84. 


But this implies that 
2—1 =2. 2#- – 1= 7, 47,87,27, or 67 (mod 100), 
whence 


n= 25-10% 1) 
= 4 . 7, 24 . 47, 44 . 87, 64 - 27, or 84 - 67 (mod 100). 


256 Perfect Numbers CHAPTER 10 


" 
It is a modest exercise, which we bequeath to the reader, to verify that 
each of the products on the right-hand side of the last congruence is 
congruent to 28 modulo 100. 


PROBLEMS 10.1 


1. Prove that the integer п == 21 (2" — 1) is пога perfect number by 

showing that e(n) # 2n. [Hint: 2" — 1 = 23. 59.] 

2. Verify each of the statements below: 

(а) No power of a prime can be a perfect number. 

(b) A perfect square cannot be a perfect number. 

(c) The product of two odd primes is never a perfect number. 
[Hint: Expand the inequality (p — 1)(q — 1) > 2 to get pq 
2ptq-ti] 

* If isa perfect number, prove that 3.472. 


Y 


4. Prove that every even perfect number is a triangular number. 

5. Given that я is an even perfect number, say n = 2*~1(2* — 1), show 
that m.s 1+2 +3 + -.. + (2-11) and also that ф(л) = 
2*71(24-1 — 1). 

«For an even perfect number n > 6, show the following: 

(a) The sum of the digits of 7 is congruent to 1 modulo 9. [Hint: 
The congruence 25 = 1 (mod 9? and the fact that any prime 
р = 5 is of the forin 6k + 1 or 6k + 5 imply that n = 
2271 (22 — 1) = 1 (mod 9).] 

(b) The integer п can be expressed as a sum of consecutive odd 
cubes. [Hint: Use Section 1.1, Problem 1(e) to establish the 
identity 


1... + (2* — 1)3 —22-:(22-1— 1) 
for all ez 1] 


7. Show thet no divisor ofa perfect number can he perfect. [Hint: Apply 
the result of Problem 31 


8. Find the last two digits of the perfect number 


n = 219936 (219957 — 1). 


е 


SECTION 10.1 The Search for Perfect Numbers 257 


10. 


11. 


12. 


13. 


14. 


15. 


16. 


. Ife(z) = kn, where k = 3, then the positive integer 7 is called a 


k-perfect number (sometimes, multiply perfect). Establish the fol- 
lowing assertions concerning *-perfect numbers: 
(a) 523,776 = 2 - 3 - 11 - 31 is 3-perfect; 
30,240 = 25. 33.5. 7 is 4-perfect; 
14,182,439,040 = 27. 35.5 . 7 112. 17 - 19 is 5- perfect 
(b) If mis a 3-perfect number and 3 / n, then 3n is 4-perfect. 
(c) If nis a 5-perfect number and 5 X n, then 5n is 6-perfect. 
(d) If 3nisa fk-perfect number and 3 / n, then n is 3e perfect. 
Show that 120 and 672 are the only 3-perfect numbers of the form 
n = 2* . 5 p, where p is an odd prime. 
A pox:tive integer л is multiplicatively perfect if n :s equal to the 
product of all its positive divisors, excluding п itself, in other words, 
m = Пл, d. Find all multiplicatively perfect numbers. [Hint: 
Notice that 02 = n2] 
(a) If n> 6 is an even perfect number, prove that n = 4 (mod 
6). [Hint: 22-1 = 1 (mod 3) for an odd prime р.] 
(b) Prove that if n # 28 is an even perfect number, then n= | 
or —1 (mod 7). 
For any even perfect number 
2*|a(r?) + 1. 
Numbers я such that o(o() ) = 2n are called superperfect num- 
bers. 
(2) If n = 2* with 2**! — 1a prime, prove thai n is superperfect; 
hence, 16 and 64 are superperfect. 
(b) Find all even perfect numbers n = 2*7 1(2* — 1) which are 
also superperfect. (Hint: First establish the equality о(о(п)) 
zm 2k (241 = 1)] 
The harmonic mean H(n) of the divisors of а positive integer. n is 
defined by the formula 


n = 2*- (24 — 1), show that 


1 1 1 
Hin) хох d' 
Show that if n is a perfect number, then H(n) must be an integer. 
(Hint: Observe that H(n) = nr(n)/o(n).] 
The twin primes 5 and 7 are such that one-half their sum is a perfect 
number. Are there any other twin primes with this property? [Hint: 
Given the twin primes p and р + 2, with p > 5,+(p + p + 2) 


= 6k tor some k> 1] 


258 Perfect Numbers CHAPTER 10 


17. Prove that if 2* — 1 is prime, then the sum 
2e-14 Qe 4 Qe+1 4... 4 020-2 


will yield a perfect number. For instance, 2? — i is prime and 
2? + 23 + 2* = 28, which is perfect. 

18. Assuming that я is a perfect number, say n = 2*- '(2* — 1), prove 
that the product of the positive divisors of л is equal to n*; in sym- 


bols, 
П.а = п 
19. If m, m, -+ , n, аге distinct even perfect numbers, establish that 
Cmm ++ n) = 2r- 'é(n)$(n) --- $(п). 


[Hint: see Problem 5.] 
20. Given an even perfect number n = 2*- (2* — 1), show that 


2^]e(s2) +1. 


10.2 MERSENNE PRIMES 


It has becomé traditional to call numbers of the form 
; М, = 2" = 1(п2 1) 


Mersenne numbersafter a French monk, Father Marin Mersenne (1588 
1648), who made an incorrect but provocative assertion concerning their 
primality. Those Mersenne numbers which happen to be prime are said 
to be Mersenne primes. By what we proved in Section 10.1, the deter- 
mination of Mersenne primes M,—and, in turn, of even perfect num- 
bers—is narrowed down to the case in which л is itself prime. 

In the preface of his Cogitata Pbysica-Matbematica (1644), 
Mersenne stated that M, is prime for p = 2, 3,5, 7, 13, 17, 19, 31, 67, 127, 
257 and composite for all other primes р < 257. It was obvious to other 
mathematicians that Mersenne cculd not have tested for primality all the 
numbers he had announced; but neither could they. Euler verified (1772) 
that M; was prime by examining all primes up to 46339 as possible divi- 
sors, but Ми», Mian, and M;,, were beyond his technique; in any event, 
this yielded the eighth perfect number 


Z2" (2^ — 1) = 2,305,843,008,139,952,128. 


It was not until 1947, after tremendous labor caused by unreli- 
able desk calculators, that the examination of the prime or composite 
character of M, for the 55 primes in the range p = 257 was completed. 


SECTION 10.2 Mersenne Primes 259 


We know now that Mersenne made five mistakes. He erroneously con- 
cluded that М, and M;s are prime and excluded Мы, Ma, and Myo, from 
his predictea list of primes. It is rather astonishing that over 300 years 
were required to set the good friar straight. 

All the composite numbers M, with n < 257 have now been 
completely factored. The most difficult factorization, that of Ма, was 
obtained as recently as 1984 after a 32-hour search ona supercomputer. 

An historical curiosity is that, in 1876, Edouard Lucas worked a 
test whereby he was able to prove that the Mersenne number Mc, was 
composite; but he could not produce the actual factors. At the October 
1903 meeting of the American Mathematical Society, the American math- 
ematician Frank Nelson Cole had a paper on the program with the some- 
what unassuming title “Оп the Factorization of Large Numbers." When 
talled upon to speak, Cole walked to a board and, saying nothing, pro- 
ceeded to raise the integer 2 io the 67th power; then he carefully sub- 
tracted 1 from the resulting number and let the figure stand. Without a 
word he moved to a clean part of the board and multiplied, longhand, 
the product ji 


193,707,721 X 761,838,257,287. 


The two calculations agreed. The story goes that, for the first and only 
time on record, this venerable body rose to give the presenter of a paper 
a standing ovation, Cole took his seat without having uttered a word, and 
no one bothered to ask him a question. (Later, he confided to a friend 
that it took him twenty years of Sunday afternoons to find the factors of 
Ме.) 

In the study of Mersenne numbers, one comes upon a strange 
fact: when each of the first four Mersenne primes (namely, 3, 7, 31, and 
127) is substituted for 7 in the formula 2" — 1,a higher Mersenne prime 
is obtained. Mathematicians had hoped that this procedure would give 
rise to an infinite set of Mersenne primes; in other words, the conjecture 
was that if the number M, is prime, then My, is also a prime. Alas, in 
1953 a high-speed computer found the next possibility 


B 


Mum; = 2% — 1 = 2819 —1 


(а number with 2466 digits) to be composite. 
There are various methods for determining whether certain spe- 


cial types of Mersenne numbers are prime or composite. One such test 
is presented below. 


THEOREM 10-3. Гр and q = 2p + 1 are primes, then either q| M, 
or q| M, + 2, but not both. 


260 Perfect Numbers CHAPTER 10 


Proof: With reference to Fermat’s Theorem, we know that 
29-1 — 1 =0 (mod 4) 

and, factoring the left-hand side, that 

(24-5? — 1) (29-52 +1) = (2 — 1 (2+1) 

= (mod 4). 
What amounts to the same thing: 
M,(M, + 2) =0 (mod 4). 

The stated conclusion now follows from Theorem 3-1. One cannot 


have both q| M, and qM, + 2, for then 412, which is impossible, 


A single application should suffice to illustrate Theorem 10-3: If 
p = 23, then g = 2p + 1 = 47 is also a prime, so that we may consider 
the case of M5. The question reduces to one of whether 47 | M», or, to 
put it differently, whether 2? = 1 (mod 47). Now, we have 


23 = 23(25)4 = 22(—15)* (mod 47). 
But 
(—15)* = (225)? = (—10)?= 6 (mod 47). 
Putting these two congruences together, it is seen that 
23 = 2? . 6 = 48 = 1 (mod 47) 


whence M,, is composite. 


We might point out that Theorem 10-3 is of no help in testing 


the primality of М», Say; in this instance, 59 / Mj, but instead 
59| М» + 2. 


Of the two possibilities 41 M, or q| M, + 2, is it reasonable to 


ask: What conditions on q will ensure that 4| M,? The answer is to be 
found in 


THEOREM 10-4. /f a = 2n - 1 is prime, tben 

(1) 2| M,, provided that q— 1 (mod 8) or q= 7 (mod 8); 

(2) ql M, + 2, provided that q= 3 (mod 8) or g=5 (mod 8). 
Proof: To say that q| M, is equivalent to asserting that 


2(«- 02 = 2" = 1 (mod а). 


SECTION 10.2 Mersenne Primes 261 


In terms of the Legendre symbol, the latter condition becomes the 
requirement that (2/4) = 1. But according to Theorem 9-6, (2/4) 
= 1 whenever g= 1 (mod 8) or q 7 (mod 8). The proof of (2) 
proceeds along similar lines. 


Let us consider an immediate consequence of Theorem 10-4. 


Совошлву. If p and 4 = 2p + 1 are both odd primes, with p= 5 
(mod 4), then q| Mp- 


Proof. An odd prime p is either of the form 4k + 1 or 4k + 3. If 
р = 4k + 3, then q = 8k + 7 and Theorem 10-4 yields q| M,. In 
case р = 4k + 1, then 4 = 8k + 3 so that g X Mp. 


The following is a partial list of those primes p= 3 (mod 4) for 
which q = 2p + 1 is also prime: р = 11, 23, 83, 131, 179, 181, 239, 251. 
In.each instance, M, is composite. 

Exploring the matter a little further, we next tackle two results 
of Fermat which restrict the divisors of M,. The first is 


THEOREM 10-5. Jf p is an odd prime, then any divisor of M, is of the 
form 2kp + 1. 


Proof Let q be any prime divisor of Mp, so that 2 = 1 (mod 4). И 
2 has order k modulo 4 (that is, if k is the smallest positive integer 
satisfying 2^ = 1 (mod 4)), then Theorem 8-1 tells us that kl p. 
The case k = 1 cannot arise; for this would imply that 411, an im- 
possible situation. Therefore, since k|p and k> 1, the primality 
of p forces k = p. 
In compliance with Fermat’s Theorem, we have 29725] 

(mod 4) and so, thanks to Theorem 8-1 again, #14 — 1. Knowing 
that k = p, the net result is that plq — 1. То be definite, let us put 
а= 1 = pt; then а = pt t+ 1. The proof is completed by noting 
that if г were an odd integer, then q would be even and a contra- 
diction occurs. Hence, we must have 4 = 2kp + 1 for some choice 
of k, which gives q the required form. 

As a further sieve to screen out possible divisors of M,, we cite 
the following result. 


262 Perfect Numbers CHAPTER 10 


THEOREM 10-6. /f p is an odd prime, then any prime divisor q of. M, 
is of the form а = +1 (mod 8). 


Proof: Suppose that 4 = 2n + 1 is a prime divisor of M,. If a 
= 2+0 2 then 


a@—2= det! — 2 = 2M,=0 (mod 9). 


Raising both sides of the congruence a? = 2 (mod 4) to the mth 
power, we arrive at 


1-1 = а" = 2" (mod q). 


Since 4 is an odd integer, one has gcd(a, 4) = 1 and so a^^ = 1 
(mod q). In conjunction, the last two congruences tell us that 2” 
= 1 (mod 4) or, viewed otherwise, q| M,. Theorem 10-4 may now 
be brought into play to reach the conclusion that q = +1 
(mod 8). 


For an illustration of how these theorems can be used, one might 
look at M,.. Those integers of the form 34% + 1 which are less than 
362 < VM,- are 


35, 69, 103, 137, 171, 205, 239, 273, 307, 341. 


Since the smallest (nontrivial) divisor of M,- must be prime, we need 
only consider the primes among the foregoing ten numbers; namely, 


105, 137, 239, 307. 


The work can be shortened somewhat by noting that 307 == +1 (mod 
8) and so 307 may be deleted from our list. Now either M,- is prime or 
one of the three remaining possibilities divides it. With a little calcu- 
lation, one can check that M,, is divisible by none of 103, 137, and 239; 
the result: M, is prime. 


After giving the eighth perfect number 2*(2?' — 1), Barlow in 
his book Theory of Numbers (published in 1811) concludes from its size 
that it “is the greatest that ever will be discovered; for as they are merely 
curious, without being useful, it is not likely that any person will ever 


SECTION 10.2 Mersenne Primes 263 


attempt to find one beyond it.” The very least that can be said is that 
Barlow underestimated obstinate human curiosity. While the subse- 
quent search for larger perfect numbers provides us with one of the fas- 
cinating chapters in the history of mathematics, an extended discussion 
would be out of place here. 

It is worth remarking however that the first twelve Mersenne 
primes (hence, twelve perfect numbers) have been known since 1914. 
The twelfth in order of discovery, namely Ms, was the last Mersenne 
prime disclosed by hand calculation; its primality was verified by both 
Powers and Cunningham in 1914, working independently and by dif- 
ferent techniques. The prime Mz; was found by Lucas in 1876 and for 
the next 75 years was the largest number actually known to be a prime. 

Calculations whose mere size and tedium repel the mathema- 
tician are just grist for the mill of electronic computers. Starting in 1952, 
eighteen additional Mersenne primes (all huge) have come to light. The 
twenty-fifth Mersenne prime, Ма», Was discovered in 1978 by two 
eighteen-year-old high schoo! students, Laura Nickel and Curt Noll, using 
440 hours оп а large computer. A few months later, Noll confirmed that 
Maj, is also prime. With the advent of much faster computers, even this 
record prime did not stand for long. The Mersenne prime Мо, found 
in 1985 and until now the most recent, is currently the largest of the 
known prime numbers. This in its turn gives rise to the largest even per- 
fect number, the thirtieth one: 


Py = 2216090( 2216091 — 1), 


an immense number of 130,100 digits. 

At the time of this writing, two computer experts at the Houston 
Area Research Center report having found the thirty-first Mersenne prime, 
namely M,,0503- To their surprise, this newly discovered prime was lurking 
in the gap between two previously known Mersenne primes. Just as re- 
markable is that their search of the gap was run on а supercomputer in 
the incredibly fast time of 11 minutes. 

For the reader's convenience, we list the 30 even perfect num- 
bers, the number of digits in each, and its approximate date of discovery. 


T 


Perfect Numbers CHAPTER 10 


Number Number of digits Date of discovery 

1 2(2— 1) 1 unknown 

2 2123-1) 2 unknown 

3 25-1 3 unknown 

4 2(2—1 4 unknown 

5 29(2»— 1) 8 1456 

6 29(27 — 1) 10 1588 

7 2"Q"-— 1) 12 1588. 

8 202" — 1) 19 1772 

9 202% — 1) 37 1883 

10 2™(2” — 1) 54 a 

11 2"«2m — 1) 65 1914 

12 21217 — 1) 77 1876 

13 26252" — 1) 314 1952 

14! géx(2tor— 1) 366 vido 

15 2 «2» — 1) 770 1952 

16 Qum(gu — 1) 1327 1952 | 
17. 225(229 — 1) 1373 1952 l 
18. 23216(2327 — 1) 1937 1957 j 
19 24254 (249 — 1) 2561 1961 | 
20 29295 — 1) 2663 1961 | 
21. 2999296 — 1) 5834 1963 i 
22-29 (291 — ]) 5985 1963 
23 211900212 — 1) 6751 1963 | 
24 2w*(2mw — 1) 12,003 1971 | 
25 2ати(аат — 1) 13,066 1978 
26 2mm — 1) 13,973 1978 

27. онан" — 1) 26,790 1979 

$8] owe (25871) 51,924 1985 

Зинира у 79,502 1983 

30:22216" (22m — 1) 130,100 1985 


Most mathematicians believe that there are infinitely many Mer- 
senne primes, but a proof of this seems hopelessly beyond reach. Known 
Mersenne primes M, clearly become more scarce as p increases. It has у 
been conjectured that about two primes M, should be expected for all 


primes p in an interval x < р < 2x; the numerical evidence tends to 
support this. 


ee miam, y 


SECTION 10.2 | Mersenne Primes 265 


The perfect numbers given above are the only ones which have 
been discovered. One of the celebrated problems of number theory is 
whether or not there existany odd perfect numbers. While no odd per- 
fect number has thus far been: produced, it is nonetheless possible to 
find certain conditions for their existence. The oldest of these we owe 
to Euler, who proved that ifm is an odd perfect number, then 

n= pp." Mood iSo 

where p, q,,. . ., q, are distinct odd primes and p=a= 1 (mod 4). In 
1937, Steuerwald showed that not all the 8, can be equal to 1; that is, if 
n = раа? +++ qè is an odd number with p sa = 1 (mod 4), then м 
is not perfect. Four years later, Kanold established that the B, cannot all 
be equal to 2, nor is it possible to have one В, equal to 2 and all the others 
equal to 1. The last few years have seen further progress: Hagis and 
McDaniel (1972) found that it is impossible to have В, — 3 for all & 

With these comments out of the way, let us prove Euler's result. 


THEOREM 10-7 (Euler). fn is an odd perfect number, tben 


Ar 


n= bp bes 
wbere tbe p, are distinct odd primes and p, = k, = 1 (mod 4). 


Proof: Let n = py" pr"? «+ p" be the prime factorization of n. Since 
nis perfect, we can write 

2n = o(n) = opo") --. olp) 
Being an odd integer, n= 1 (mod 4) or n= 3 (mod 4); in either 
event, 2n = 2 (mod 4). Thus, в(п) = 2n is divisible by 2, but not 
by 4. The implication is that one of the с(р/), say o(p"), must be 
an even integer (but not divisible by 4), while all the remaining 


o(p") are odd integers. 
For a given p, there are two cases to be considered: p, 


= 1 (mod 4) and р, = 3 (mod 4): If p, 3 = —1 (mod 4), we 
would have ; í ‘ 
op) =1tpt+ pit: tp 
= ED FODH + (—1)" (mod 4) 


Lus 0 (mod 4) if k, is odd 
1 (mod 4) if k is even 


266 Perfect Numbers CHAPTER 10 


Since o(p“) = 2 (mod 4), this tells us that p, = 3 (mod 4) or, to 
put it affirmatively, р, = 1 (mod 4). Furthermore, the congruence 
o(p) =0 (mod 4) signifies that 4 divides o(p;"), which is not 
possible. The conclusion: if р, == 3 (mod 4), where #= 2,....,7, 
then its exponent &, is an even integer. 

Should it happen that p, = 1 (mod 4)—which is certainly 
true for ¿= 1—then 


alpi) = 1 + р + рё +... +p" 
=1+14+12+... +1“ (mod 4) 
= k; + 1 (mod 4). 


The condition c( p,") = 2 (mod 4) forces k, = 1 (mod 4). For the 
other values of i, we know that о(р,') = 1 or 3 (mod 4) and so k, 
7x0 or 2 (mod 4); in any case, k, will be an even integer. The crucial 
point is that, regardless of whether р, == 1 (mod 4) or р, = 3 (mod 
4), k, is always even for i # 1. Our proof is now complete. 


In view of the preceding theorem, any odd perfect number n сап 
be expressed as 
n= php/^ so. pi^ e ph(ph... pi 
= pnm. 
This leads directly to 


Совомлву. Jf n is an odd perfect number, then n is of tbe form 
n= рт, 

where p is a prime, рУ m, and p= k= 1 (mod 4); in particular, 

пе 1 (mod 4). 


Proof: Only the last assertion is not immediately obvious. Because 
P= 1 (mod 4), we have p* == 1 (mod 4). Notice that m must be 
odd; hence, m = 1 or 3 (mod 4) and so, upon squaring, m? = 1 
(mod 4), It follows that 

п = pm == 1. 1 == 1 (mod 4), 


establishing our corollary. 


—— Mm" 


SECTION 10.2 Mersenne Primes 267 


Another line of investigation involves estimating the size of an 
odd perfect number n. The classical lower bound was obtained by Tur- 
caninov in 1908: я has at least five distinct prime factors and exceeds 
2. 105. With the advent of electronic computers, the lower bound has 
been improved to n > 101%. Recent investigations have shown that n 
must be divisible by at least eight distinct primes, the largest of which 
is greater than 100129, while the next largest exceeds 1009; if 3 / л, then 
the number of distinct prime factors of 7 is at least eleven. 

While all of this lends support to the belief that there are no odd 
perfect numbers, only a proof of their nonexistence would be conclu- 
sive. We would then be in the curious position of having built up a whole 
theory for a class of numbers that didn’t exist. “It must always,” wrote 
the mathematician Joseph Sylvester in 1888, “‘stand to the credit of the 
Greek geometers that they succeeded in discovering a class of perfect 
numbers which in all probability are the only numbers which are per- 
fect.” 

Another group of numbers that has had a continuous history ex- 
tending from the early Greeks to the present time comprises the ami- 
cable numbers. Two numbers like 220 and 284 are called amicable, or 
friendly, because they have the remarkable property that each number 
is “contained” within the other, in the sense that each number is equal 
to the sum of all the positive divisors of the other, not counting the 
number itself. Thus as regards the divisors of 220, 


12-44 54-10-11 + 20 + 22 + 44 + 55 + 110 = 284 


while for 284, 
1+2+4+ 71 + 142 = 220, 
In terms of the « function, amicable numbers т and n (or an amicable 
pair) are defined by the equations 
(т —m=n, e(n —n-7 m, 
or what amounts to the same thing, 
a(m) = т + n= о(т). 


Down through their quaint history, amicable numbers have been 
important in magic and astrology, and in casting horoscopes, making tal- 
ismans, and concocting love potions. The Greeks believed that these 
numbers had a particular influence in establishing friendships between 


265 Perfect Numbers CHAPTER 10 


individuals. The philosopher Iamblichus of Chalcis (ca. a.0:250-a.D.330) 
ascribed a knowledge of the pair 220 and 284 to the Pythagoreans. He 
wrote: 


They [the Pythagoreans] call certain numbers amicable numbers, adopting 
virtues and social qualities to numbers, as 284 and 220; for the parts of each 
have the power to generate the other. 


Biblical commentators spotted 220, the lesser of the classical pair, in 
Genesis 32:14 as numbering Jacob's present to Esau of 200 she:goats and 
20 he-goats. According to one commentator, Jacob wisely counted out 
his gift (a “hidden secret arrangement") in order to secure the friend- 
ship of Esau. An Arab of the eleventh century, El Madschriti of Madrid, 
related that he had put to the test the erotic effect of these numbers by 
giving someone a confection in the shape of the smaller number, 220, 
to eat, while he himself ate the larger, 284. He failed, however, to de- 
scribe whatever success the ceremony brought. 

Itisa mark of the slow development of number theory that until 
the 1630s no one had been able to add to the original pair of amicable 
numbers discovered by the Greeks. The first explicit rule described for 
finding certain types of amicable pairs is due to Thabit ibn Kurrah, an 
Arabian mathematician of the 9th century. In a manuscript composed at 
that time, he indicated: 


If the three numbers p = 3.2" —1,4753-2"-', and г = 
9. 2"-! — 1 are all prime and n > 2, then 2"pq and 2"r are amicable 
numbers. 


It was not until its rediscovery centuries later by Fermat and Descartes 
that Thabit's rule produced the second and third pairs of amicable num- 
bers. In a letter to Mersenne in 1636, Fermat announced that 17,296 and 
18,416 were an amicable pair, and Descartes wrote to Mersenne in 1638 
that he had found the pair 9,363,584 and 9,437,056. Еегтагз pair re- 
sulted from taking м = 4 in Thabit's rule (p = 23, 4 = 47, r = 1151 are 
all prime) and Descartes's from n = 7 (p = 191, 4 = 383, r = 73,727 
are all prime). S 
In the 1700s, Euler drew up at one clip a list of sixty-four ami- 
cable pairs; two of these new pairs were later found to be “unfriendly,” 
one in 1909 and one in 1914. Adrien Marie Legendre in 1830 found an- 
other pair, 2,172,649,216 and 8,520,191. А 
Extensive computer searches have currently revealed more than 
7500 amicable pairs, some of them running to 282 digits; these include 
all those with values less than 10%. It has not yet been established 
whether the number of amicable pairs is finite or infinite, nor has a рай 


р 


SECTION 10.2 Мегѕеппе Primes 269 


been produced in which the numbers are relatively prime. What has been 
proved is that each integer in a pair of relatively prime amicable num- 
bers must be greater than 1025; and their product must be divisible by at 
least 22 distinct primes. Part of the difficulty is that in contrast with the 
single formula for generating (even) perfect numbers, there is no known 
rule for finding all amicable pairs of numbers. 


PROBLEMS 10.2 


1. Prove that the Mersenne number M,, is a prime; hence the integer 
n = 212 (23 — 1) is perfect. |Hint: Since УМ, < 91, Theorem 
10-5 implies that the only candidates for prime divisors of M;, are 
53 and 79.] 

2. Prove that the Mersenne number M, is a prime; hence the integer 
n = 2"(25 — 1) is perfect. [Hint: By Theorems 10:5 and 10-6, the 
only prime divisors to test are 191, 457, and 647.] 

. Prove that the Mersenne number M; is composite. 

4. A positive integer 7 is said to be a deficient number if (n) < 2n 
and an abundant number if с(п) > 2n. Prove each of the fol- 
lowing: 

(a) There are infinitely many deficient numbers. [Hint: Consider 
the integers п = р^, where p is an odd prime and k= 1.) 

(b) There are infinitely many even abundant numbers. [Hint: 
Consider the integers п = 2* - 3, where k > 1] 

(c) There are infinitely many odd abundant numbers. [Hint: Con- 
sider the integers n = 945 - k, where kis any positive integer 
not divisible by 2, 3, 5, or 7. Since 945 = 35.5. 7, it follows 
that gcd(945 , k) = 1 and so a(n) = 0(945)o(k).] 

. Assuming that 7 is an even perfect number and d| n, where 1 < d 
< n, show that dis deficient. 

6. Prove that any multiple of a perfect number 15 abundant. 

7. Confirm that the pairs of integers listed below are amicable: 

(a) 220 = 22. 5 · 11and 284 = 2 - 71 (Pythagoras, 500 в.с.); 
(b) 17296 = 2‘ . 23 . 47 and 18416 = 2* - 1151 (Fermat, 1636), 
(c) 9363584 = 27 - 191 - 383 and 9437056 = 27. 73727 (Des: 
cartes, 1638). 
8. Fora pair of amicable numbers m and n, prove that 


(perm 


dim din 


w 


5 


270 


9. 


10. 


11. 


12. 


13. 


14. 


15. 


16. 


Perfect Numbers CHAPTER 10 


Establish the following statements concerning amicable numbers: 
(a) Neither p nor p? can be one of an amicable pair, where p is a 
prime. 
(b) The larger integer in any amicable pair is a deficient number. 
(c) If mand nare an amicable pair, with m even and я odd, then 
n is a perfect square, (Hint: If p is an odd prime, then 1 tp 
+ р? + .-: + p'is odd only when ё is an even integer.] 
In 1886, a 16-year-old Italian boy announced that 1184 = 2° - 37 
and 1210 = 2.5. 11? form an amicable pair of numbers; but gave 
no indication of the method of discovery. Verify his assertion. 
Prove ‘Thabit’s rules" for amicable pairs: Ifp=3-.2"7'—- 1, 
q=3:2"— 1andr=9. 2:"-1 — J are all prime numbers, where 
n > 2, then 2"pq and 2"r are an amicable pair of numbers. This 
rule produces amicable numbers for я = 2, 4 and 7, but forno other 
n = 20,000. 
By an amicable triple of numbers is meant three integers such that 
the sum of any two is equal to the sum of the divisors of the re- 
maining integer, excluding the number itself. Verify that 2° - 3 
. 13.294 . 337,2°.3.5.13. 16561 and 2 ..3 . 13 + 99371 are 
an amicable triple. 
A finite sequence of positive integers is said to be a sociable chain 
if each is the sum of the positive divisors of the preceding integer, 
excluding the number itself (the last integer is considered as pre- 
ceding the first integer in the chain), Show that the following in- 
tegers form a sociable chain: 


14288, 15472, 14536, 14264, 12496. 


Only two sociable chains were known until 1970, when nine chains 
of four integers apiece were found. 

Prove that 

(a) any odd perfect number n can be represented in the form 

n = ра, where p is a prime; 

(b) if» = pæ is an odd perfect number, then n = p (mod 8). 
If nis an odd perfect number, prove that 7 has at least three distinct 
prime factors. [Hint: Assume n = p*q, where p= k= 1 (mod 4). 
Use the inequality 2 = (72/7 = [p/(p — 1)14/(4 — 1)] to reach 
a contradiction.] 

If the integer п > 1 is a product of distinct Mersenne primes, show 
that a(n) = 2* Юг some k. 


SECTION 10.3 Fermat Numbers 271 


10.3 FERMAT NUMBERS 


To round out the picture, let us mention another class of numbers that 
provides a rich source of conjectures, the Fermat numbers. These may 
be considered as a special case of the integers of the form 2" + 1. We 
observe that if 2" + 1 is a prime, then т = 2" for some n > 0. For, 
assume to the contrary that т had an odd divisor 2k TU 1j say 
m = (2k + Пн then 27 + 1 would admit the nontrivial factorization 


2"{+1= Qut or + 1 = (27) * +1 + 1 
= (27+ 1)(2" — 20-0 4... +2" - 2+1), 


which is impossible. In brief, 2” + 1 can be prime only if m is a power 
of 2. 


DEFINITION 10-2. A Fermat number is an integer of the form 
F,=2" +1, n=O. 


If Е, is prime, it is said to be a Fermat prime. 


Fermat, whose mathematical intuition was usually reliable, ob- 
served that the integers 


R,-3,F-75R-7WR-25,R-— 65,537 


are all primes and expressed his belief that F, is prime for each value of 
n. In writing to Mersenne, he confidently announced: “I have found that 
numbers of the form 2?" + 1 are always prime numbers and have long 
since signified to analysts the truth of this theorem." However, Fermat 
bemoaned his inability to come up with a proof and, in subsequent let- 
ters, his tone of growing exasperation suggests that he was continually 
trying to do so. The question was resolved negatively by Euler in 1732 
when he found 
F, = 25 + 1 = 4,294,967,297 


to be divisible by 641. To us, such a number does not seem very large; 
but in Fermat’s time, the investigation of its primality was difficult and 


he obviously did not carry it out. 
The following elementary proof that 641| F, does not explicitly 


involve division and is due to G. Bennett. 


272 Perfect Numbers CHAPTER 10 


THEOREM 10-8. The Fermat number F, is divisible by 641. 


Proof: We begin by putting а = 2’ and b = 5, so that 
1+ ар= 1+ 27.5 = 641. 
It is easily seen that 
1+ ab—-B=1+ (a— b)b=1 + 3Ь = 2. 
But this implies that 
= 2? +1=2 +1 
= а +1 
=(1+ ab— b)a* +1 
= (1+ ара + (1 — ath’) 
= (1 + ab)[a* + а — ab) + eb?) 


which gives 641 | F,. 


To this day it is not known whether there are infinitely many 
Fermat primes or, for that matter, whether there is at least one Fermat 
prime beyond А. The best "guess" is that all Fermat numbers F, > Е 
are composite. 

Part of the interest in Fermat primes stems from the discovery 
that they have a remarkable connection with the ancient problem of de- 
termining all regular polygons that can be constructed with ruler and 
compass alone (where the former is used only to draw straight lines and 
the latter only to draw arcs). In the seventh and last section of the Dis- 
quisitiones Arithmeticae, Gauss proved that a regular polygon of n sides 
is so constructible if and only if either 


n=2* or n= pp ---р,, 


where k = 0 and p,,p,,. . . ,p,are distinct Fermat primes. The construc- 
tion of regular polygons of 2^, 2* - 3, 2* - 5 and 2* - 15 sides had been 
known since the time of the Greek geometers. In particular, they could 
construct regular n-sided polygons for я = 3, 4, 5, 6, 8, 10, 12, 15, and 
16. What no one suspected before Gauss was that a regular 17-sided 
polygon can also be constructed by ruler and compass. Gauss was so 
proud of his discovery that he requested that a regular polygon of 17 
sides be engraved on his tombstone; for some reason, this wish was never 
fulfilled, but such a polygon is inscribed on the side of a monument to 
Gauss erected in Brunswick, Germany, his birthplace. 


SECTION 10.3 Fermat Numbers 273 


A useful property of Fermat numbers is that they are relatively 
prime to each other. ; 


THEOREM 10-9. For Fermat numbers F, and F,,, where m > n 
= 0, gcd(F,, , F,) = 1. 


Proof: Put d = gcd(F,, , F,). Since Fermat numbers are odd inte- 
gers, d must be odd. If we set x = 22" and k = 277 ", then 


Е. 200010800 
Е, "+1 


xu 


= ytri xA72 4... —1, 
х+1 5 I 


whence F,| (Е, — 2). From dl F,, it follows that d| (E, — 2). Now 
use the fact that d| F,, to obtain 412. But d is an odd integer, and 
so d — 1, establishing the result claimed. 

This leads to a pleasant little proof of the infinitude of 
primes: We know that each of the Fermat numbers А, Fi,» . ., Fn 
is divisible by a prime which, according to Theorem 10-9, does not 
divide any of the other F,. Thus there are at least n + 1 distinct 
primes not exceeding F,. Since there are infinitely many Fermat 


numbers, the number of primes is also infinite. 
In 1877, T. Pepin devised the practical test for determining the 


primality of F, that is embodied in the following theorem: 
THEOREM 10-10 (Pepin). For n = 1, the Fermat number F, = 
22" + 1 is prime if and only if 
3n - 9/7 = —1 (mod Е). 


Proof: First let us assume that 
3» 02 = —] (mod FJ). 
Upon squaring both sides, we get 
3/^-'21 (mod Е,). 
The same congruence will hold for any prime p which divides Е»: 
37^ ' = (mod p). 


Now suppose & to be the order of 3 modulo p. Theorem 8-1 indi- 
cates that k| F, — 1, or in other words that k| 22"; therefore k must 


be a power of 2. 


274 Perfect Numbers CHAPTER 10 


It is not possible that k = 2" for any r= 2" — 1. For if this 
were so, repeated squaring of the congruence 3*= 1 (mod p) would 
yield 

32" -! = 1 (mod p), 
or, what is the same thing, 
3n -m = 1 (mod p. 
We would then arrive at 1 = — 1 (mod p), resulting in p = 2, which 
is а contradiction. Thus the only possibility open to us is that 
k-2^"-F,—1. 
Fermat's Theorem tells us now that & € p — 1, which means in 
turn that F, = k + 1 <р. Since pl F,, we also have p = Е,. Together 
' these inequalities mean that F, — p, so that F, is a prime. 

On the other hand, suppose that Fẹ, п = 1, is prime. The 

Quadratic Reciprocity Law gives 

(3/F) = (Fa/3) = (2/3) = —1, 
when we use the fact that Е, = (— 1)?” + 1 = 2 (mod 3). Applying 
Euler’s Criterion, we end up with 


3¢fn~ 92 = — (mod F,). 


Let us demonstrate the primality of F, = 257 using Pepin’s 
test. Working modulo 257, we have 
5 CES 1/2 = 3128 = 33(35)25 
== 27(—14)* 
= 27 . 14%4(-14) 
== 27(—17)(—14) 
== 27 . 19 == 513 = —1 (mod 257), 
so that А, is prime. 


In 1905, J. С. Morehead and A. Е. Western independently per 
formed Pepin's test on F;, and communicated its composite character 
almost simultaneously. It took 66 years, until 1971, before Brillhart and 
Morrison discovered the prime factorization 

Е = 2108 + 1 
= 59,649,589,127,497,217 · 5,704,689,200,685,129,054,721. 


SECTION 10.3 Fermat Numbers 275 


(The possibility of arriving at such a factorization without recourse to 
fast computers with large memories is remote.) Morehead and Western 
carried out (1909) a similar calculation for the compositeness of Fa, each 
doing half the work; but the actual factors were not found until 1981, 
when Brent and Pollard showed the smallest prime divisor of А to be 


1,238,926,361,552,897. 


The other factor of F, is 62 digits long, and was shortly afterwards shown 
to be prime. A large F, to which Pepin's test has been applied is Fi, а 
number of 4933 digits; this Fermat number was determined to be com- 
posite by Selfridge and Hurwitz in 1963, although at present no divisor 
is known. 

Our final theorem, due to Euler and Lucas, is а valuable aid in 
determining the divisors of Fermat numbers. As early as 1747, Euler es- 
tablished that every prime factor of F, must be of the form k. 2"*! + 
1; over 100 years later, in 1879, the French number theorist Edouard Lucas 
improved upon this result by showing that & can be taken to be even. 
From this, we have the following theorem. 


THEOREM 10-11. Any prime divisor p of the Fermat number F, 
= 22" + 1, where n > 2, is of the form p = АОРТА d 
Proof: For a prime divisor p of F,, 
22" = —1 (mod р), 
which is to say, upon squaring, that 
22" * } = 1 (mod p). 
If bis the order of 2 modulo p, this congruence tells us that 
bizni 
We cannot have b = 2' where 1 £ r= n, for this would lead to 
22" = 1 (mod p), 


and in turn to the contradiction that p = 2. This lets us conclude 
that № = 2"+1, Since the order of 2 modulo p divides ф(р) = р 
— 1, we may further conclude that 27*!|p — 1. The point is that 
for n = 2, p = 1 (mod 8) and so, by Theorem 9-6, the Legendre 
symbol (2/p) = 1. Using Euler's Criterion, we immediately pass to 


20 - 02 == (2/р) = 1 (тоа р). 


276 Perfect Numbers CHAPTER 10 


An appeal to Theorem 8-1 finishes the proof; it asserts that 
bi (p = 1)/2, ог equivalently, 2” * ' | (р — 1)/2. This forces 
2"+2| p — 1, and we obtain p = k - 2"*? + 1 for some integer k. 


Theorem 10-11 enables us to determine quite easily the nature 
of F, = 216 + 1 = 65537. The prime divisors of F, must take the form 
2k + 1 = 64k + 1. There is only one prime of this kind which is less 
than or equal to VF, namely the prime 193. Because this trial divisor 
fails to be a factor of Е, we may conclude that Е, is itself a prime. 

The increasing availability and speed of computing equipment 
has allowed the search for prime factors of the Fermat numbers to be 
extended significantly. In 1980, G. Gostin discovered the prime factor 
31065037602817 of А, (none had previously been determined). An- 
other computational development was the successful application (1987) 
of Pepin's Test by Young and Buell to £j, which had 315,653 digits; until 
this, Е, had been the largest Fermat number exposed to the test. It is 
now known that Е, is composite for 5 = n = 20, as well as some 60 other 
values of n, the largest being n = 23,473. For Е», the challenge remains: 
it is the smallest Fermat number whose character is in doubt. Consid- 
ering the size of Fp, its nature is not likely to be determined for some 
time. 

A resume of the current primality status for the Fermat numbers 
F,, 0 = п S 30, is given below. 


A ooo 


n Character of F,, 
0,1,2,3,4 © Prime 
5, 6,7, 8 Completely factored 
10, 11, 12, 19, 30 Two or four factors known 
9, 13, 15, 16, 17, 18, 21, 23, 25, 26,27 Only one prime factor known 
14, 20 Composite but no factor known 
22, 24, 28, 29 Character unknown 


The case for Ас was settled in 1953 and lays to rest the tanta- 
lizing conjecture that all the terms of the sequence 


2*1212^4127 1,27 +1... 


are prime numbers. What is interesting is that none of the known prime 
factors p of a Fermat number Е, gives rise to a square factor p^; indeed, 
it is speculated that the Fermat numbers are square-free. 


SECTION 10.3 Fermat Numbers 277 


Numbers of the form k - 2" + 1, which occur in the search for 


prime factors of Fermat numbers, are of.considerable interest in their 
own right. The smallest я for which k - 2" + 1 is prime may be quite 
large in some cases; for instance, the first time 47 . 2" + 1 is prime is 
when п = 583. But there also exist values of k such that k - 2" + 1 is 
always composite. Indeed, in 1960 it was proved that there exist infi- 
nitely many odd integers k with Ё - 2" + 1 composite for all n > 1. The 
problem of determining the least such value of k remains unsolved. Up 
to now, k = 78557 is the smallest known # for which k - 2" + 1 is never 
prime for any 7. 


PROBLEMS 10.5 


1. 


2. 


By taking fourth powers of the congruence 5.272: —1 (mod 641), 
deduce that 22 + 1 = 0 (mod 641); hence, 6411 Е. д 
Gauss (1796) discovered that a regular polygon with psides, where 
pisa prime, can be constructed with ruler and compass if and only 
if p — 1 is a power of 2. Show that this condition is equivalent to 
requiring that p be a Fermat prime. 

For n > 0, prove that 

(a) there are infinitely many composite numbers of the form 
22" + 3; (Hint: Use the fact that 22" = 3k + 1 for some k to 
establish that 7 | 22^*' + 3.] 

(b) each of the numbers 2?" + 5 is composite. 

Composite integers т for which n|2" — 2 are called pseudoprimes. 

Show that: 

(а) If л is odd pseudoprime, then the Mersenne number M, is 
also pseudoprime; hence, there are infinitely many pseudo- 
primes. [Hint: The reladon 2n|2" — 2 gives п12"-' — 1, 
whence 27-! — 1 = kn for some k. Then 24-7! —1 = 2^ 
—1=(2")*-1, which implies that 2" — 1[29571- 1] 

(b) Every Fermat number F, is either a prime or a pseudoprime. 
[Hint: Raise the congruence 22" == —1 (mod F,) to the 
27"- " power.) 

For n > 2, show that the last digit of the Fermat number F, = 

22" + 1 is 7. [Hint: By induction on 7, verify that 22" == 6 (mod 10) 

for n = 2.] 

Establish that 22” — 1 has at least л distinct prime divisors. [Hint: 

Use induction on and the fact that 

2" — 1 = (2772 -0] 


278 


Perfect Numbers CHAPTER 10 


7. In 1869, Landry wrote: "No one of our numerous factorizations of 


10. 


11 


12. 


13. 


the numbers 2" + 1 gave us as much trouble and labor as that of 
2 + 1.” Verify that 2% + 1 can be factored rather easily using the 
identity 

404 + 1 = (2x? — 2x + 1)(2x? + 2x + 1). 


From Problem 5, conclude that 

(a) the Fermat number F, is never a perfect square; 

(b) for n> 0, F, is never a triangular number. 

(a) For any odd integer n, show that 312" + 1. 

(b) Prove that if p and gare odd primes and 412” + 1, then either 
q = 3 ога = 2kp + 1 for some integer k. [Hint: Since 
222 = 1 (mod q), the order of 2 modulo gis either 2 or 2p; in 
the latter case, 2p | $(4).] 

(c) Find the smallest prime divisor g > 3 of each of the integers 
Qa ted and: 245 t 1. 

Determine the smallest odd integer п > 1 such that 2" — 1 is di- 

visible by a pair of twin primes p and q, where p < q. [Hint: Being 

the first member of a pair of twin primes, p == —1 (mod 6). Since 

(2/p) = (2/4) = 1, Theorem 9-6 gives p= q= +1 (mod 8); hence, 

p= —1 (mod 24) and q 1 (mod 24). Now use the fact that the 

orders of 2 modulo рапа q must divide z.] 

Find all prime numbers p such that p divides 2^ + 1; do the same 

for 2? — 1. 

Let p = 5 . 2" + 1 bea prime, where n 2 1. (Twenty-five primes 

of this form are currently known, the smallest occurring when п 

= 1 and the largest when я = 3912.) Prove each of the following 
assertions: 

(a) The order of 2 modulo p is either 2* or 3 - 2^ for some 0 = k 
= п. 

(b) Except when p = 13, 2 is not a primitive root of р. [Hint: If 2 
is a primitive root of р, then (2/p) = —1.] 

(c) The order of 2 modulo p is not divisible by 3 if and only if p 

' divides a Fermat number F, with 0 = k < n — 1. [Hint: Use 
the identity 2^ — 1 = REE...F,-.] 

(d) There is no Fermat number which is divisible by 7, 13, or 97. 
For any Fermat number F, = 2?" + 1, establish that F, = 5 or 8 
(mod 9) according as 7 is odd or even. [Hint: Use induction to show, 
first, that 22" = 22"! (mod 9).] 


SECTION 10.3 Fermat Numbers 279 


14. Use the fact that the prime divisors of F, are of the form 276 + 1 


= 128k + 1 to confirm that 641 | №. 


15. For any prime p > 3, prove the following: 


16. 


17. 


18. 


19. 


1 
(а) 30 + 1) is not divisible by 3. [Hint: Consider the identity 


2^ + 1 


= -i= -2 Nn 
ES 2-2 241] 


1 
(b) 30 + 1) has а prime divisor greater than р. [Hint: Problem 


9(b).] 
(c) The integers 30 + Папа sg + 1) are both prime. 


From the previous problem, deduce that there are infinitely many 


prime numbers. 
(a) Prove that 3, 5, and 7 are quadratic nonresidues of any Fermat 
prime F,. [Hint: Pepin's test and Problem 16, Section 9.3.] 
(b) Show that every quadratic nonresidue of a Fermat prime F, is 
a primitive root of F,. 
Establish that any Fermat prime F, can be written as the difference 
of two squares, but not of two cubes. [Hint: 


в = 2+1 = (2-1 +1): — Qn 
For n = 1, show that gcd(F,, n) = 1. [Hint: Theorem 10-11] 


11 


The Fermat 
Conjecture 


“He who seeks for methods 
without having 
a definite problem in mind 


seeks for the most part in vain.” 


D. HILBERT 


11.1 РУТНАСОКЕАМ TRIPLES 


Fermat, whom many regard as a father of modern number theory, never- 
theless had a custom peculiarly ill-suited to this role. He published very 
little personally, preferring to communicate his discoveries in letters to 
friends (usually with no more than the terse statement that he possessed 
a proof) or to keep them to himself in notes. A number of such notes 
were jotted down in the margin of his copy of Bachet’s translation of 
Diophantus’ Arithmetica. By far the most famous of these marginal com- 
ments is the one—presumably written about 1637—which states: 


It is impossible to write a cube as a sum of two cubes, a fourth power as a 
sum of two fourth powers, and, in general, any power beyond the second 
as a sum of two similar powers. For this, 1 have discovered a truly won- 
derful proof, but the margin is too small to contain it. 


In this tantalizing aside, Fermat was simply asserting that, if m > 2, then 
the Diophantine equation 


xx ye =z 


has no solution in the integers, other than the trivial solutions in which 
at least one of the variables is zero. 

The quotation just cited has come to be known as Fermat's Last 
Theorem or, more accurately, Fermat's Conjecture. All the results he 
enunciated in the margin of his Aritbmetica were later found to be true 
with the one exception of the Last Theorem, which still awaits proof or 
disproof. If Fermat had a “truly wonderful proof,” it has never come to 
light. To date, the conjecture has only been established for specific values 
of the exponent 7 (electronic computers have shown that there are no 
nontrivial solutions in the range 3 = п < 150000), but no general proof 

раз been forthcoming. 

Any explicit counterexample to the Fermat Conjecture would in- 
volve integers of immense size. It has been shown that if p is an odd 
prime, xyz # 0, and х? + у? = 22, then x must have at least 1.8 million 
digits and x? at least 2-10" digits. In decimal notation, x would require 
over one hundred pages to write down and x? would fill up at least ten 
thousand volumes of one thousand pages each: 


SECTION 11.1 Pythagorean Triples 283 


` 
Fermat did. however leave a proof of his Last Theorem for the 
case n = 4. In order to carry through the argument, we first undertake 
the task of identifying all solutions in the positive integers of the equa- 
tion 


(1) х2 + у? = 2, 


Since the length z of the hypotenuse of a right triangle is related to the 
lengths xand y of the sides by the famous Pythagorean identity x? + у? 
= 22, the search for all positive integers which satisfy (1) is equivalent 
to the problem of finding all right triangles with sides of integral length. 
The latter problem was raised in the days of the Babylonians and was a 
favorite with the ancient Greek geometers. Pythagoras himself has been 
credited with a formula for infinitely many such triangles, namely 


х= 2п+ 1,у= 272 + 21,2 = 27? + 2п + 1, 


where n is an arbitrary positive integer. This formula does not account 
for all right triangles with integral sides and it was not until Euclid wrote 
his Elements that a complete solution to the problem appeared. 

The following definition gives us a concise way of referring to 
the solutions of (1): 


DEFINITION 11-1. A Pythagorean triple is а set of three integers х, 
y z such that x? + y? = z^; the triple is said to be primitive if 


gcd(x, y, 2) = 1. 


Perhaps the best known examples of primitive Pythagorean tri- 
ples are 3, 4, 5 and 5, 12, 13, while a less obvious one is 12, 35, 37. 

There are several points that need to be noted. Suppose that x, 
y zis any Pythagorean triple and d= gcd(, y, 2). If we write x = ах, 
y= dy, z= dz, then it is easily seen that 


2 2 2 

xt yee um LÁ 

with gcd(, , 91, z) = 1. In short, x, у, z; form a primitive Pythagorean 
triple. Thus, it is enough to occupy ourselves with finding all primitive 
Pythagorean triples; any Pythagorean triple can be obtained from a prim- 
itive one upon mültiplying by a suitable nonzero integer. The search 
may be confined to those primitive Pythagorean triples x, у, Zin which 
x> 0, y > 0, => 0, inasmuch as all others arise from the positive ones 
through a simple change of sign. 


284 The Fermat Conjecture CHAPTER 11 


Our development requires two preparatory lemmas, the first of 
which sets forth a basic fact regarding primitive Pythagorean triples. 


LEMMA 1. Ifx, y, z is a primitive Pythagorean triple, then one of the 
integers x and y is even, while the other is odd. 


Proof: И x and y are both even, then 2 | (x? + y?) or 2 | 22, so that 
212. The inference is that gcd(x, у, 2) > 2, which we know to be 
false. If, on the other hand, x and y should both be odd, then 
х2 = 1 (mod 4) and y? = 1 (mod 4), leading to 


22 = x? + y= 2 (mod 4). 


But this is equally impossible, since the square of any integer must 
be congruent either to 0 or to 1 modulo 4. 


Given a primitive Pythagorean triple x, y, z, exactly one of these 
integers is even, the other two being odd (if x, y, z were all odd, then 
x? + у? would be even, while z? is odd). The foregoing lemma indicates 
that the even integer is either x or y; to be definite, we shall hereafter 
write our Pythagorean triples so that x is even and y is odd; then, of 
course, z is odd. 

It is worth noticing (and we will use this fact) that each pair of 
the integers x, у, and z must be relatively prime. Were it the case that 
gcd(x, y) = d> 1, then there would exist a prime p with p| d. Since 
d| хапа d| у, we would have p| x and D y, whence p| x? and p| уг. But 
then p| (x? + y*), огр| 22, giving pl z. This would conflict with the 
assumption that gcd(x , у, 2) = 1, and so d = 1. In like manner, one 
can verify that gcd(y, 2) = gcd(x,z) = 1. 

By virtue of Lemma 1, there exists no primitive Pythagorean triple 
х, y, z all of whose values are prime numbers. There аге primitive Py- 
thagorean triples in which z and one of x or yis a prime; for instance, 
3, 4, 5; 11, 60, 61; and 19, 180, 181. It is unknown whether there exist 
infinitely many such triples. 

The next hurdle which stands in our Way is to establish that if а 
and b are relatively prime positive integers having a square as their 
product, then a and b are themselves squares. With an assist from the 
Fundamental Theorem of Arithmetic, we can prove considerably more, 
to wit, 


LEMMA 2. [fab = с", where gcd(a , b) = 1, then a and b are nth 
Powers; that is, there exist positive integers a,, b, for which a = а", 
b= br. 


MEI 


SECTION 111 Pythagorean Triples 285 


Proof: There is no harm in assuming that а > 1 and b> 1. If 
а= php” «p, b= ghgh--- dh 
are the prime factorizations of a and b, then, bearing in mind that 
gcd(a, b) = 1, no p,can occur among the q;. Аз a result, the prime 
factorization of ab is given by 
ab = p- рмаћ +++ 4 


Let us suppose that c can be factored into primes as с = up us ++ 
и". Then the condition ab = c" becomes 


р.“ 20 ра) -q= um. um. 
From this, one sees that the primes 14, . - - ‚ шаге p «o Ph 
а, - : s 4, Cin some order) and nh, . . . , nl are the corre- 
sponding exponents ky een 5 d RD j,. The conclusion: 


each of the integers k, and j, must be divisible by я. If we now put 
a, = pp, «++ per" : 
b, = а/а?" s aie, 
then a," = a, В" = b, as desired. 
With the routine work now out of the way, the characterization 
of all primitive Pythagorean triples is fairly straightforward. 
THEOREM 11-1. АЙ the solutions of tbe Pytbagorean equation 
x2 + у =z? 
satisfying the conditions 
всабх, у, 2) = 1, 21% x7 0,y>0,z>0 
are given by the formulas 
x= 25у = И, == Se 
for integers s > t> 0 such that gcd(s, i) = lands Æ t (mod 2). 
Proof; To start, let x, y, zbe a (positive) primitive Pythagorean triple. 
Since we have agreed to take x even, and y and z both odd, z y 


апа z + yare even integers; Say, 2 — y = 2uandz + у = 2v. Now 
the equation x? + 5^ = z? may be rewritten as 


2 =2— у= (z— 06+ 5), 


286 The Fermat Conjecture CHAPTER 11 


whence 


[eo +) $ 

a ( 2 X 2 м 

Notice that и and vare relatively prime; for, if gcd(u, v) = d> 1, 
then d| (м — v) and dl (и + v), or equivalently, d| y and d| z, 
which violates the fact that gcd( y, 2) = 1. Taking Lemma 2 into 
consideration, we may conclude that u and v are each perfect 
Squares; to be specific, let 


u=s,v=f 


where sand tare positive integers. The result of substituting these 
values of u and v reads: 


z= utv= + 2, 
ym WO s 
х2 = uv = 45р, 


ог, in the last case х = 2st, Since а common factor of sand t divides 
both yand z, the condition gcd(y, 2) = 1 forces gcd(s, ) = 1. It 
remains for us to observe that if s and t were both even, or both 
odd, then this would make each of y and z even, an impossibility. 
Hence, exactly one of the pair s, #15 even, while the other is odd; 
in symbols, s Æ t (mod 2). 

Conversely, let sand t be two integers subject to the con- 
ditions described above. That x = 2st, y= 52 — e, z= 5 + form 
a Pythagorean triple follows from the easily verified identity 


ж + y? = (25): + (я п) = (8 + P) = z, 


To see that this triple is primitive, we assume that вса(х, y, 2) = 
4> 1 апа take pto be any prime divisor of d. Observe that pF 2, 
since p divides the odd integer z (one of sand tis odd, while the 
other is even, hence s? + f = z must be odd). From plyand 
pz, we obtain p| (z + y) and pl (z — y), or put otherwise, pi2s 
and p | 202. But then p| sand p| t, which is incompatible with 
ged(s, ?) = 1. The implication of all this is that d = 1 and so х, » 
2 constitutes a primitive Pythagorean triple. Theorem 11-1 is thus 
proven. 


SECTION 11.1 Pythagorean Triples 287 


The table below lists some primitive Pythagorean triples arising 
from small values of s and ¢ For each value of 5 = 1, 2,3, ... ,7,.we 
have taken those values of t which are relatively prime to 5, less than s 
and even whenever s is odd. 


* y z 
5 t (2st) (sn) (+r) 
оп A a E 
2 1 4 3 5 
3 2 12 5 13 
4 1 8 15 17 
4 3 24 7 25 
5 2 20 21 29 
5 4 40 9 41 
6 1 12 35 37 
6 5 60 11 61 
7 2 28 45 53 
7 4 56 33 65 
7 6 84 13 85 


From this or from a more extensive table, the reader might be 
led to suspect that if x, y, zis a primitive Pythagorean triple, then exactly 
one of the integers x or y is divisible by 3. This is, in fact, the case. For, 


by Theorem 11-1, we have 

x= y=’ Poze sete, 
where gcd(s, ) = 1. If either 3 | sor 31 f, then evidently 3 | x, and we 
need go no farther. Suppose that 3 J sand 3 J t. Fermat's Theorem asserts 
that 

s= 1 (mod 3), t^ = 1 (mod 3) 


and so 
у=" - r = 0 (mod 3). 


In other words, y is divisible by 3, which is what we were required to 
show. 


288 The Fermat Conjecture CHAPTER 11 


Let us define a Pythagorean triangle to be a right triangle whose 
sides are of integral length. Our findings lead to an interesting geo- 
metric fact concerning Pythagorean triangles, recorded as 


THEOREM 11-2. The radius of the inscribed circle of a Pythagorean 
triangle is always an integer. 


Proof: Let r denote the radius of the circle inscribed in a right tri- 
angle with hypotenuse of length zand sides of lengths хапа y The 
area of the triangle is equal to the sum of the areas of the three 
triangles having common vertex at the center of the circle, hence 


Yi ss 1 PERPE Y 
9 = srt oy t prem ort yt 2). 


The situation is illustrated below: 


T~ 


о 


Now x? + у? = 27. But we know that the positive integral 
solutions of this equation are given by 


х = 2kst, y = k(s? — P), z= k(s? + п) 


for an appropriate choice of positive integers &, s, t. Replacing x, 
y z in the equation ху = r(x + y + z) by these values and solving 
for r, it will be found that 


2625052 — t?) 
7 Rast + sir ао ie A 
_ aus? — B) 


stt matta 


which is an integer. 


С SECTION 111 Pythagorean Triples 289 


We take the opportunity to mention another result relating 
to Pythagorean triangles. Notice that it is possible for different Py- 
thagorean triangles to have the same area; for instance, the right 
triangles associated with the primitive Pythagorean triples 20, 21, 
29 and 12, 35, 57 each have an area equal to 210. Fermat proved: 
for any integer n > 1, there exist м Pythagorean triangles with dif- 
ferent hypotenuses and the. same area. The details of this are 
omitted. 


PROBLEMS 11.1 


1. (a) Findthree different Pythagorean triples, not necessarily prim- 
itive, of the form 16, y, 2. 
(b) Obtain all primitive Pythagorean triples х, у 2 in which x 
— 40; do the same for x — 60. 
2. If x, y zis a primitive Pythagorean triple, prove that x + y and 
x — yare congruent modulo 8 to either 1 or 7. 
3. (а) Prove that if n= 2 (mod 4), then there is a primitive Pythago- 
rean triple x, y; z in which x or yequals n. 
(b) If n= З isarbitrary, find a Pythagorean triple (not necessarily 
primitive) having 7 as one of its members. (Hint: For n odd, 


consider the triple 7, io ji 1), ior + 1); for n even, соп: 


sider the triple n, (72/4) — 1, (72/4) + 1] 
{ 4. Prove that in a primitive Pythagorean triple x, y, 2, the product xy 
is divisible by 12, hence 60| xyz. 
B 5. For a given positive integer 7, show that there are at least n 
Pythagorean triples having the same first member. (Hint: Let 
y. = DART 1) and 2, = 29022" 7 ?^ + 1) for k = 0, 1, 2, 
1 уп = 1. Then 2"* !, Yu Ze are all Pythagorean triples.] 
" 6. Verify that 3, 4, 5 is the only primitive Pythagorean triple involving 
consecutive positive integers. 

7. Show that 37; án, 5n where п = 1,2, . . .аге the only Pythagorean 
LO triples whose terms are in arithmetic progression. [Hint: Call the 
triple in question x — d, X, X + d, and solve for x in terms of d] 


290 The Fermat Conjecture CHAPTER 11 


8. Findall Pythagorean triangles whose areas are equal to their perim- 
eters. [Hint: The equations x* + y? = 22 and x + y + z = + xy 


imply that (x — 4)(y — 4) = 8.] 
9. (a) Prove that if x, у, z is a primitive Pythagorean triple in which 
x and zare consecutive positive integers, then 


x-72(tt1,y-2t*-1,z-2(t-1) +1 
for some t > 0. Hint: The equation 
Dee Xu go p Ts 
implies that s — t= 1.] 


(b) Prove that if x, у, z is a primitive Pythagorean triple in which 
the difference z — y — 2, then 
хе 2,у= Ё - 1,2= 0 + 1 
for some t> 1. 

10.: Show that there exist infinitely many primitive Pythagorean triples 
x, у z whose even member x is a perfect square. (Hint: Consider 
the triple 477, m — 4, m + 4, where n isan arbitrary odd integer.] 

11. For an arbitrary positive integer n, show that there exists a Pythag- 
orean triangle the radius of whose inscribed circle is. п. (Hint: 
If r denotes the radius of the circle inscribed in the Pythago- 
rean triangle having sides a and 6 and hypotenuse c, then r = 


> (@+ b — o. Now consider the triple 2n + 1, 2$ + 2n, 
25$ 2nd 1] 
12. (a) Establish that there exist infinitely many primitive Pythago- 
rean triples x, y, zin which x and J'are consecutive positive 
integers. Exhibit five of these, [Hint: If x, x + 1, z forms а 
Pythagorean triple, then so does the triple 3x + 2z + 1, 
3x t 2z + 2, 4x + 3z 2] 
(b) Show that there exist infinitely many Pythagorean triples x, у 
2 in which x and y are consecutive triangular numbers. Ех- 
hibit three of these. [Hint: If x, x + 1, z forms a Pythagorean 
triple, then so does b., b+, (2x + 1)2] 
13. Use Problem 12 to prove that there exist infinitely many triangular 
numbers which are perfect squares. Exhibit five such trjangular 
numbers. (Hint: If x, x + 1, z forms a Pythagorean triple, then upon 


setting u = z — x — 1,v= x + (1 — 2), one obtains 
u(u + 1)/2 = v2] 


a 


SECTION 11.2 The Famous “Last Theorem” 291 


11.2 THE FAMOUS “LAST THEOREM” 


With our knowledge of Pythagorean triples, we are now prepared to take 
up the one case in which Fermat himself had a proof of his conjecture, 
the case n = 4. The technique used in the proof is a form of induction 
sometimes called *'Fermat's method of infinite descent." In brief, the 
method may be described as follows: It is assumed that a solution of the 
problem in question is possible in the positive integers. From this so- 
lution, one constructs a new solution in smaller positive integers, which 
then leads to a still smaller solution and so on. Since the positive inte- 
gers cannot be decreased in magnitude indefinitely, it follows that the 
initial assumption must be false and therefore no solution is possible. 

Instead of giving a proof of the Fermat Conjecture for n = 4, it 
turns out to be easier to establish a fact which is slightly stronger; namely, 
the impossibility of solving the equation x* + у“ = z? in the positive 
integers. 


THEOREM 11-3 (Fermat). The Diopbantine equation x‘ + у* = 2? 
bas no solution in positive integers x, y, 2. 


Proof: With the idea of deriving a contradiction, let us assume that 
there exists a positive solution X» У» 20 of x* + y‘ = 22. Nothing 
is lost in supporting also that gcd(as , Yo) = 1; otherwise, put 
ваҳ, X) = d, x = dx, Yo = Wr % = dz, to get xi! + yi‘ 
= z? with gcd(x, , у) = 1. 

Expressing the supposed equation x + у = z in the 


form 
(х2) + QU = n 

we see that №2, 32, Zo meet all the requirements of a primitive Py- 
thagorean triple, and so Theorem 11-1 can be brought into play. In 
such triples, one of the integers ху or Jp? is necessarily even, while 
the other is odd. Taking %7 (and hence %) to be even, there exist 
relatively prime integers s > t> 0 satisfying 

x? = 2st, 

у? = 52 — P, 

z-sSt D 
where exactly one of sand tis even. Ifit happened that swere even, 
then we would have 

1=yt=s—- 220 — 1 = 3 (mod 4), 


292 


an impossibility. Therefore, s must be the odd integer and, in con- 
sequence, fis the even one. Let us put t = 2r. Then the equation 
№? = 2st becomes x? = 457, which says that 


(5/2)? = sr. 
But Lemma 2 asserts that the product of two relatively prime in- 
tegers [gcd(s, ?) = 1 implies that gcd(s, r) = 1] is a square only 
if each of the integers is itself a square; hence, s = 212, r= w, for 
positive integers 21, ил. 
We wish to apply Theorem 11-1 again, this time to the 
equation 


Py -s. 
Since gcd(s;, f) = 1, it follows that gcd(t, y, , s) = 1, making 
2, Yo, sa primitive Pythagorean triple. With t even, we obtain 
t= 2uv, 
y= we т, 
s-M y, 
for relatively prime integers и > v > 0. Now the relation 
uv = t/2 = r= w? 


signifies that и and vare both squares (Lemma 2 serves its purpose 
once more); say, u = x? and v = y. When these values are sub- 
stituted into the equation for s the result is 


+= xh + y. 


A crucial point is that, z, and ? being positive, we also have the 
inequality 


0< 27527 =sss<cse+ ep =z! 


What has happened is this: starting with one solution %, Yo 
Z% of x* + y* = 22, we have constructed another solution x, 3» A 
such that 0 < 2, < z, Repeating the whole argument, our second 
solution would lead to a third solution x, yz z with 0 < z; < Z, 
which in its turn gives rise to a fourth. This process can be carried 
out indefinitely to produce an infinite decreasing sequence of pos- 
itive integers 


а> 2> 2 > .... 


The Fermat Conjecture CHAPTER 11 


| 


SECTION 11.2 The Famous “Last Theorem” 293 


Since there is only a finite supply of positive integers less than 2, 
a contradiction occurs. We are forced to conclude that x* + y* 
= 22 is not solvable іп the positive integers. 


As an immediate corollary, one gets the following. 


Сокоца, The equation x* + у* = z* bas no solution in the pos- 
itive integers. 


Proof: lf x, у, 2 Were a positive solution of x* + у! = 2", then xy, 
Yo 22 would satisfy the equation x* + y! = 22, in conflict with 
Theorem 11-3. 


If n > 2, then n is either a power of 2 or divisible by an odd 
prime р. In the first case, n = 4k for some k > 1 and the Fermat equation 


x" + y" = 2" can be written as 
(x*)4 + (у»)* = (z9*. 


We have just seen that this equation is impossible in the positive inte- 
gers. When n = pk, the Fermat equation is the same as 


(ate + (у? = Gy. 


If it could be shown that the equation и” + v? = w has no solution, 
then, in particular, there would be no solution of the form и = at 
v= yt, ш = z*and hence x^ + у" = 2" would not be solvable. Fermat's 
Conjecture therefore reduces to this: for no odd prime p does the equa- 
tion 

хР Еу = zh 


admit a solution in the positive integers. 
Although the problem has challenged the foremost mathema- 


ticians of the last 300 years, their efforts have only produced partial re- 
sults and proofs of individual cases. Euler gave the first proof of the Fermat 
Conjecture for the prime p = 3 in the year 1770; the reasoning was in- 
complete at one stage, but Legendre later supplied the missing steps. 
Using the method of infinite descent, Dirichlet and Legendre indepen- 
dently settled the case p = 5 around 1825. Not long thereafter, in 1839, 
Lamé proved the conjecture for seventh powers. With the increasing 
complexity of the arguments came the realization that a successful res- 
olution of the general case called for different techniques. The best hope 
seemed to lie in extending the meaning of “integer” to include a wider 


294 The Fermat Conjecture CHAPTER 11 


class of numbers and, by attacking the problem within this enlarged 
system, obtaining more information than was possible by using ordinary 
integers only. 

The German mathematician Kummer made the major break- 
through. In 1843, he submitted to Dirichlet a purported proof of the 
Fermat Conjecture based upon an extension of the integers to include 
the so-called “algebraic numbers” (that is, complex numbers satisfying 
polynomials with rational coefficients). Having spent considerable time 
on the problem himself, Dirichlet was immediately able to detect the 
flaw in the reasoning: Kummer had taken for granted that algebraic num- 
bers admit a unique factorization similar to that of the ordinary integers, 
and this is not always true. 

But Kummer was undeterred by this perplexing situation and 
returned to his investigations with redoubled effort. In order to restore 
unique factorization to the algebraic numbers, he was led to invent the 
concept of ideal numbers. By adjoining these new entities to the alge- 
braic numbers, Kummer successfully proved the Fermat Conjecture for 
a large class of primes which he termed “regular primes” (that this rep- 
resented an enormous achievement is reflected in the fact that the only 
irregular primes less than 100 are 37, 59, and 67.). Unfortunately, it is 
still not known whether there are an infinite number of regular primes, 
while, in the other direction, Jensen (1915) established that there exist 
infinitely many irregular ones. Almost all the subsequent progress on the 
problem has been within the framework suggested by Kummer. 

In 1983, a 29-year-old West German mathematician, Gerd Falt- 
ings, proved that for each exponent n > 2, the Fermat equation x” + 
y" = 2" can have at most a finite number (as opposed to an infinite 
number) of integral solutions. At first glance, this may not seem like much 
of an advance; but if it can now be shown that the finite number of so- 
lutions is zero in each case, then the Fermat Conjecture can be laid to 
rest once and for all. 

For one brief moment in 1988, it appeared that the final break- 
through had been made. A flurry of reports in the press announced that 
Yoichi Miyaoka of Tokyo Metropolitan University had favorably resolved 
the conjecture. But closer scrutiny of the immensely complicated proof 
revealed subtle yet fundamental missteps. The failure of Miyaoka's іпі- 
tial attempt is not really surprising or unusual in mathematical research. 
Normally, proposed proofs are privately circulated and examined for 
possible flaws months in advance of any formal announcement. In Mi- 
yaoka's case, the notoriety of one of number theory's most elusive con- 
jectures brought premature publicity and subsequent disappointment to 
the mathematical community. 


SECTION 11.2 The Famous “Last Theorem" 295 


To round out our historical digression, we might mention that 
in 1908 a prize of 100,000 marks was bequeathed to the Academy of Sci- 
ence at Gottingen to be paid for the first complete proof of Fermat's Con- 
jecture. The immediate result was a deluge of incorrect demonstrations 
by amateur mathematicians. Since only printed solutions were eligible, 
Fermat's Conjecture is reputed to be the mathematical problem for which 
the greatest number of false proofs have been published; indeed, be- 
tween 1908 and 1912 over 1000 alleged proofs appeared, mostly printed 
as private pamphlets. Suffice it to say, interest declined as the German 
inflation of the 1920's wiped out the monetary value of the prize. 

From х* + y* = z?, we move on toa closely related Diophantine 
equation, namely, x* — y* = 22, The proof of its insolubility parallels 
that of Theorem 11-3, but we give a slight variation in the method of 
infinite descent. 


THEOREM 11-4 (Fermat). The Diopbantine equation х — у! = 24 
has no solution in positive inegers х, у, 2. 


Proof: The proof proceeds by contradiction. Let us assume that the 
equation admits a solution in the positive integers and among these 
solutions 3, Jo, Z is one with a least value of x; in particular, this 
supposition forces x, to be odd (Why?). Were gcd(x, , Yo) = d 
> 1, then putting № = 4%, » = dy,, we would have a(x — y’) 
= 22, whence d?| z, or % = 421 for some z, > 0. It follows that 
X, у, 2 provides a solution to the equation under consideration 
with 0 < x, < x, an impossible situation. Thus, we are free to 
assume a solution %, Jo) zo in which gcd(x,, y) = 1. The ensuing 
argument falls into two stages; depending on whether у, is odd or 
even. 
First, consider the case of an odd integer y». If the equation 

XS — yt = z? is written in the form z? + (2)? = Gy), one sees 
that 2, Y°, №? constitute а primitive Pythagorean triple. Theorem 
11-1 asserts the existence of relatively prime integers s > tz 0 for 
which 

Z% = 2st, 

y» = 52,0, 

х2 = 9 + Р. 


It thus appears that 
яве (+в (фм = ду (х0), 


i i — = 72 
making s, ѓ ҳ,уьа (positive) solution to the equation x! — y* = 2°. 


296 The Fermat Conjecture CHAPTER 11 


Since 
0<s< Vs + P= м 
we arrive at a contradiction to the minimal nature of 2. 
For the second part of the proof, assume that у, is an even 


integer. Using the formulas for primitive Pythagorean triples, we 
now write 


gem em tot 12" 


je = 2st, 
а= 9-Р, | 
x! == $2 + P, } 
where s may be taken to be even and tto be odd. Then, in the re- 
lation у? = 2st, we have gcd(2s, д = 1. The by-now-customary 
Lemma 2 tells us that 2sand tare each squares of positive integers; 


say, 2s = w?, t = v?. Since w must of necessity be an even integer, 
set w = 2u to get s = 212, Therefore, 


х = 5 + = 4ut+ v4 
and so 212, 0°, x, forms a primitive Pythagorean triple. Falling back 
on Theorem 11-1 again, there exist integers a > b > 0 for which B 
212 = 2ab, | 
v-g-—b, 
m= at b, 
where gcd(a, b) = 1. The equality и? = ab ensures that a and b 
are perfect squares, so that a = с and b = 22. Knowing this, the 
rest of the proof is easy; for, upon substituting, 
pem gi bum ct d. 
The result is a new solution c, d, v of the given equation x* — y* 
= 2? and what's more, a solution in which 
0<с= уа< 2 + 2 = х, 


contrary to our assumption regarding х. 
The only resolution of these contradictions is that the 
equation x* — y* = 2? cannot be satisfied in the positive integers. 


In the margin of his copy of Diophantus’ Arithmetica, Fermat 
states and proves: the area of a right triangle with tational sides cannot 


"EST ENEE EE S T EE ГНУ Pea eee TRIP NPTORDRNUN? 


SECTION 11.2 The Famous “Last Theorem” 297 


be the square of a rational number. Clearing of fractions, this reduces to 
a theorem about Pythagorean triangles; to wit, j 


THEOREM 11-5. The area of a Pythagorean triangle can never be 
equal to a perfect (integral) square. 


Proof: Consider a Pythagorean triangle whose hypotenuse has 
length z and other two sides have lengths x and y, so that x? + y? 


= 22. The area of the triangle in question is i xy and if this were 


a square, say 1^, it would follow that 2xy = 4. By adding and 
subtracting the last-written equation from x? + у: = z?, we are led 
to 


(xy? = 22 +410 and (8—0) 2 412. 


When these last two equations аге multiplied together, the out- 
come is that two fourth powers have as their difference a square: 


(x? = yy = zt lbu‘ = 2* — (21)*. 


Since this amounts to an infringement of Theorem 11-4, there can 
be no Pythagorean triangle whose area is a square. 


There are a number of simple problems pertaining to Pythago- 
rean triangles that still await solution. The Corollary to Theorem 11-3 
may be expressed by saying that there exists no Pythagorean triangle all 
the sides of which are squares. However, it is not difficult to produce 
Pythagorean triangles whose sides, if increased by 1, are squares; for 
instance, the triangles associated with the triples 13* — T.10* m: 
14? — 1, and 287? — 1, 265? — 1, 329? — 1, An obvious—and as yet un- 
answered— question is whether there are an infinite number of such tri- 
angles. One can find Pythagorean triangles each side of which is a 
triangular number. [By a triangular number, we mean an integer of the 
form t, = n(n + 1)/2.] An example of such is the triangle corresponding 
tO [у bass hea: It is not known if there exist infinitely many Pythagorean 
triangles of this type. 

As a closing comment, we should observe that all the effort ех- 
pended on attempting to prove Fermat's Conjecture has been far from 
wasted. The new mathematics that was developed as a by-product laid 
the foundations for algebraic number theory, as well as the ideal theory 
of modern abstract algebra. It seems fair to say that the value of these far 
exceeds that of the conjecture itself. 


298 The Fermat Conjecture CHAPTER 11 
PROBLEMS 11.2 
1. Show that the equation x? + у? = z? has infinitely many solutions 


= 


> 


= 


for x, y, z positive integers. [Hint: For any n > Sex 
n(n? — 3) and y = 3? — 1] 

Prove the theorem: The only solutions in nonnegative integers of 
the equation x? + 2)? = z?, with gcd(x, y, 2) = 1, are given by 
x= +(2s? — Р), у= 2st, = 25° + Р 
where s, tare arbitrary nonnegative integers. (Hint: If и, v, w are 
such that y = 2w, z + x= 2u,z — x = 20, then the equation be- 

comes 2w? = uv] 
In a Pythagorean triple x, y, z, prove that not more than one of x, 
у or 2 can be a perfect square. 
Prove each of the following assertions: 
(a) The system of simultaneous equations 


а lando xi ye mw 1 
has infinitely many solutions in positive integers x, у, 2, w. 
[Hint: For any integer n > 1, take x = 27? and y = 2n] 
(b) The system of simultaneous equations 
гагара) х7 уг на шз 
admits no solution in positive integers x, y, 2, W. 
(c) The system of simultaneous equations 
уа hel Vand.) а у аара 1 
has infinitely many solutions in positive integers x, у, 2, Ш 
[Hint: For any integer n > 1, take x = 87 + 1and y = 87?.] 
Use Problem 4 to establish that there is no solution in positive in- 
tegers of the simultaneous equations 
= 2 and x'42y и". 
[Hint: Any solution of the given system also satisfies z? + y? = и? 
and 22 — у= x1] 
Show that there is по solution in positive integers of the simulta- 
neous equations 
xy? = 2? and x? + 22 = ц; 


hence, there exists no Pythagorean triangle whose hypotenuse and 
one of whose sides form the sides of another Pythagorean triangle. 
[Hint: Any solution of the given system also satisfies а? + (wy)? 
= 24] 


SECTION 11.2 The Famous “Last Theorem" 299 


7. 


10. 


11. 


12. 


Prove that the equation x* — у? = 22? has no solutions in positive 
integers x, y, 2. [Hint: Since x, y must be both odd or both even, 
xcty-2:4,xty-2bx—-y- 2c for some a, b, c; hence, 
æ=b+ c] 
Verify that the only solution in relatively prime positive integers of 
the equation x* + у = 2z7isx= y= Z= 1. [Hint: Any solution 
of the given equation also satisfies the equation 

z— (xy)? = [© — y2/2y.] 
Prove that the Diophantine equation x* — 4y* = 22 has no solution 
in positive integers x, y, 2. [Hint: Rewrite the given equation as 
(2? + z? = (х2)? and appeal to Theorem 11-1.] 
Use Problem 9 to prove that there exists no Pythagorean triangle 
whose area is twice a perfect square. [Hint: Assume to the contrary 
that 3? + y? = z? and + xy = 2y?. Then (x + У)? = z? + 8w, 
while (x — у? = 2° — 8w’. This leads to 2 — 4(2w)* 
= (x? — y» 
Prove the theorem: The only solutions in positive integers of the 
equation 

1/х2 + 1/y? = 1/72, ged(x,y, т 


аге given by 
х= 2509 + Р), у=я- И, == 2509 — P), 


where s, tare relatively prime positive integers, one of which is even, 


with s> Ё 
Show that the equation 1/x* + 1/y 
itive integers. 


a = 1/2? has no solution in pos- 


Че, 


EU TES 


12 


Representation of 
Integers as 
Sums of Squares 


“The object of pure Physic 
is the unfolding 
of the laws of the intelligible 
world; 
the object of pure Mathematic 
that of unfolding 


the laws of human intelligence." 


J. J. SYLVESTER 


12.1 JOSEPH LOUIS LAGRANGE 


After the deaths of Descartes, Pascal, and Fermat, no French mathema- 
tician of comparable stature appeared for over a century. In England 
meanwhile, mathematics was being pursued with restless zeal, first by 
Newton, then by Taylor, Sterling, and Maclaurin, while Leibniz came 
upon the scene in Germany. Mathematical activity in Switzerland was 
marked by the work of the Bernoullis and Euler. Towards the end of the 
18th century, Paris did again become the center of mathematical studies, 
as Lagrange, Laplace, and Legendre brought fresh glory to France. 

An Italian by birth, German by adoption, and Frenchman by 
choice, Joseph Louis Lagrange (1736-1813) was, next to Euler, the fore- 
most mathematician of the 18th century. When he entered the University 
of Turin, his great interest was in physics, but, after chancing to réad a 
tract by Halley on the merits of Newtonian calculus, he became excited 
about the new mathematics that was transforming celestial mechanics. 
He applied himself with such energy to mathematical studies that he 
„was appointed, at the age of eighteen, Professor of Geometry at the Royal 
Artillery School in Turin. The French Academy of Sciences soon became 
accustomed to including Lagrange among the competitors for its bien- 
nial prizes: between 1764 and 1788, he won five of the coveted prizes 
for his applications of mathematics to problems in astronomy. 

In 1766, when Euler left Berlin for St. Petersburg, Frederick the 
Great arranged for Lagrange to fill the vacated post, accompanying his 
invitation with a modest thessage which said, “It is necessary that the 
greatest geometer of Europe should live near the greatest of Kings." (To 
D'Alembert, who had suggested Lagrange's name, the King wrote, “То 
your care and recommendation am I indebted for having replaced a half- 
blind mathematician with a mathematician with both eyes, which will 
especially please the anatomical members of my academy.") For the next 
twenty years, Lagrange served as director of the mathematics section of 
the Berlin Academy, producing work of high distinction which culmi- 
nated in his monumental treatise, the Mécanique Analytique (pub- 
lished in 1788 in four volumes). In this work he unified general 
mechanics and made of it, as the mathematician Hamilton was later to 


302 


SECTION 12.1 Joseph Louis Lagrange 303 


say, “a kind of scientific poem." Holding that mechanics was really а 
branch of pure mathematics, Lagrange so completely banished geo- 
metric ideas from the Mécanique Analytique that he could boast in the 
preface that not a single diagram appeared in its pages. 

Frederick died in 1787 and Lagrange, no longer finding a sym- 
pathetic atmosphere at the Prussian court, decided to accept the invi- 
tation of Louis XVI to settle in París, where he took French citizenship. 
But the years of constant activity had taken their toll: Lagrange fell into 
a deep mental depression which destroyed his interest in mathematics. 
So profound was his loathing for the subject that the first printed copy 
of the Mécanique Analytique—the work of a quarter century—lay unex- 
amined on his desk for more than two years. Strange to say, it was the 
turmoil of the French Revolution that helped to awaken him from his 
lethargy. Following the abolition of all the old French universities (the 
Academy of Sciences was also suppressed) in 1793, the revolutionists 
created two new schools, with the humble titles of Ecole Normale and 
Ecole Polytechnique, and Lagrange was invited to lecture on analysis. 
Although he had not lectured since his early days in Turin, having been 
under royal patronage in the interim, he seemed to welcome the ap- 
pointment. Subject to constant surveillance, the instructors were pledged 
“neither to read nor repeat from memory" and transcripts of their lec- 
tures as delivered were inspected by the authorities. Despite the petty 
harassments, Lagrange gained a reputation as an inspiring teacher. His 
lecture notes on differential calculus formed the basis of another classic 
in mathematics, the Théorie des Fonctions Analytique (1797). 

While Lagrange's research covered an extraordinarily wide spec- 
trum, he possessed, much like Diophantus and Fermat before him, a 
special talent for the theory of numbers. His work here included: the 
first proof of Wilson's Theorem that if nis a prime, then (n — Diss —1 
(mod n); the investigation of the conditions under which +2 and +5 
are quadratic residues or nonresidues ‘of an odd prime (—1 and +3 
having been discussed by Euler); finding all integral solutions of the 
equation x? — ay? = 1; and the solution of a number of problems posed 
by Fermat to the effect that certain primes can be represented in partic- 
ular ways (typical of these is the result which asserts that every prime 
р==3 (mod 8) is of the form p = # + 22). The present chapter focuses 
on the discovery for which Lagrange has acquired his greatest renown 
in number theory, the proof that every positive integer can be expressed 
as the sum of four squares. 


304 Representation of Integers as Sums of Squares CHAPTER 12 


12.2 SUMS OF TWO SQUARES 


Historically, a problem which has received a good deal of attention has 
been that of representing numbers as sums of squares. In the present 
chapter, we develop enough material to settle completely the following 
question: What is the smallest value z such that every positive integer 
can be written as the sum of not more than n squares? Upon examining 
the first few positive integers, one finds that 

Lien 

2-21't-r . 

з= ++ 

4 = 22 

9 = 22+ 12 

6 = 2 + 1° 48525 

7=2 +1 +1 +1. 
Since four squares are needed in the representation of 7,a partial answer 
to our question is that 7 = 4. Needless to say, there remains the possi- 
bility that some integers might require more than four squares. A justly 
famous theorem of Lagrange, proved in 1770, asserts that four squares 
are sufficient; that is, every positive integer is realizable as the sum of 
four squared integers, some of which may be 0 = 0. This is our Theorem 
12-7. 

To begin with simpler things, we first find necessary and suffi- 

cient conditions that a positive integer be representable as the sum of 


two squares. The problem may be reduced to the consideration of primes 
by the lemma below. 


LEMMA. If m and n are each the sum of two squares, then so is their 
product mn. 


Proof: 1f m = @ + b? and n = с + d? for integers а, b, c, d, then 
mn- (@ + be + d?) = (ac + bd) + (ad — bc)? 


It is clear that not every prime can be written as the sum of two 
squares; for instance, 5 — @ + b? has no solution for integral 4 and b. 


More generally, one can prove 


THEOREM 12-1. Noprime p of tbe formÁk + 5 isa sum of two squares. 


SECTION 12.2 Sums of Two Squares і drapes dl 305 


Proof: Modulo 4, we have а==0, 1, 2; or 3 for any integer а; hence, 
gi 25 0 or 1 (mod 4); It follows that, for arbitrary integers a and b, 


& + b?=0, 1, or 2 (mod 4). 
Since р==3 (mod 4), the equation p = @ + bèis impossible. 


On the other hand, any prime which is congruent to 1 modulo 
4 is expressible as the sum of two squared integers. The proof, in the 
form we shall give’ it, employs a theorem on congruences due to the 
Norwegian mathematician Axel Thue. This, in its turn, relies on Diri- 
chlet's famous "pigeon-hole principle": 


PIGEON-HOLE PRINCIPLE. If n objects are placed in m boxes (or 
pigeon-holes) and ifn > m, then some box will contain at least 


two objects. 


Phrased in more mathematical terms, this simple principle as- 
serts that if a set with elements is the union of m of its subsets and if 
n> т, then some subset has more than one element. 


LEMMA (Thue). Let p be a prime and gcd(a, p) = 1. Треп the con- 


gruence 
ax = y (mod p) 


admits a solution X, Yo, Where 
0<1%1< МР and 0 <1%1< УР: 


Proof: Let k = [МР] + Тапа consider the set of integers 


$2 (ux —yloS x k— 1,05 ys 1) 


Since ax — ytakes on k? > p. possible values, the Pigeon-hole Prin- 
ciple guarantees that at least two members of 5 must be congruent 
where x, * % OF 


modulo p; call them ax, у and ax, — № 
Jı * ya Then we can write 


a(x, — x) = jı — J: (mod p). 
Setting x, = X — № and y = i — Jar it follows that xj and у 


provide a solution to the congruence ax= y (mod p). If either x» 
or y, were equal to zero, then the fact that gcd(a, p) = 1 could be 


306 Representation of Integers. as Sums of Squares CHAPTER 12 


used to show that the other must also be zero, contrary to assump- 
tion. Hence, 0<Im/<k—-1 < ур and 0 «lys 2—1 < 


vp. 


We are now ready to derive the theorem of Fermat that every 
prime of the form 4k + 1 can be expressed as the sum of squares of two 
integers. (In terms of priority, Girard recognized this fact several years 
earlier and the result is sometimes referred to as Girard's Theorem.) 
Fermat communicated his theorem in a letter to Mersenne, dated De- 
cember 25, 1640, stating that he possessed an irrefutable proof. How- 
ever, the first published proof was given by Euler in 1754, who in addition 
succeeded in showing that the representation is unique. 


THEOREM 12-2 (Fermat). 4n odd prime p is expressible as a sum of 
two squares if and only if p = (mod 4). 


Proof: While the “only if” part is covered by Theorem 12-1, let us 
give a different proof here. Suppose that p can be written as the 
sum of two squares, say p = a? + b^. Because pis a prime, we have 
pý a and p / b. (If p| a, then p| b? and so p| b, leading to the 
contradiction that p?| p.) Thus, by the theory of linear congruences, 
there exists an integer c for which bc = 1 (mod р). Modulo p, the 
relation (ac)? + (bc)? = pc becomes 


(ас)? = —1 (mod p), 


making —1 a quadratic residue of p. At this point, the corollary to 
Theorem 9-2 comes to our aid, for (—1/p) = 1 only when p — 1 
(mod 4). 

For the converse, assume that p= 1 (mod 4). Since —1 is 
a quadratic residue of p, we can find an integer а satisfying Ф 
= —1 (mod p); in fact, Бу Theorem 5-3, а = [(p — 1)/2]! is one 
such integer. Now ged(a@, p) = 1, so that the congruence 


ах = у (mod р) 


admits а solution x, y, for which the conclusion of Thue’s lemma 
holds. As a result, 


=x? = ax? = (ах)? = yè (mod р) 
or №? + y? = 0 (mod p). This says that 
x + у? = kp 


SECTION 12.2 Sums of Two Squares * 307 


| for some integer k = 1. Inasmuch as 0 & las] Vp and 0 <1%1< 
үр, we obtain 0 < x2 + у? < 2p, the implication of which is that 
= 1. Consequently, %* + yè = p, and we are finished. 


Counting 2 and (— a} as the same, we have 


CoroLLaRY. Any prime p of the form 4k + 1 can be represented 
uniquely (aside from the order of the summands) as a sum of two 
squares. 


Proof: To establish the uniqueness assertion, suppose that 

pretb=e +4, 
where а, В, с, dare all positive integers. Then 

ad -be-pd- p?) =0 (mod p) 
whence ad = bc (mod p) or ad = — bc (mod p). Since 4, b, ©, d 
are all less than УР, these relations imply that 
ad — bc=0 or adt bc = р. 
If the second equality holds, then we would have ac = bd; for, 
p-(et 52) (с + 4) = (ad + bo? + (ac — bd)? 
= p? + (ac — bd)? 

and so ac — bd = 0. It follows that either 

аа = ьс or ac— bd. 


Suppose, for instance, that ad = bc. Then a| bc, with gcd(a, b) 
= 1, which forces а| c; let us say, € = ka. The condition ad = bc 
= b(ka) then reduces to d= bk. But 


paeta (0+0) 


k= 1. Inthis case, we get 4 = cand b= d. Ву а similar 


implies that 
с = bdleads to 4 — dand b = с. What 


argument, the condition а 
is important is that, in either event, 


gb-6td4, 


justifying the stated conclusion. 


308 Representation of Integers as Sums of Squares CHAPTER 12 


Let us follow the steps in Theorem 12-2, using the printe 
p= 13. One choice for the integer a is 6! = 720. А solution of the con- 
gruence 720x == y (mod 13), or rather, 


5х == y (mod 13) 


is obtained by considering the set 
$-[5x — ylO € x, y< 4]. 


The elements of $ are just the integers 


Q5 10. 15 
-1 4 9 14 
eat SH 3 
—3:542 12 

wig modulo 13, become 

0 5 10 2 
12:4 9 1 
Н Sy Sy «0 
20:2 7 Coy 7 


Among the various possibilities, we have 
5:1—3=2=5.3-— 0 (mod 13) 
or 5(1 — 3) =3 (mod 13). 
Thus, we may take x, = —2 and y, = 3. ю obtain 
13 mo by = 22+ 37. 


REMARK: Some authors would claim that any prime р == 1 (mod 4) can be 
written as a sum of squares in eight ways. For with p = 13, we have 


13 = 2 + 39 = 2 + (—3)? = (—2)? + 3 = (—2)? + (3): 

= 32 + 2 = 3? + (—2)? = (—3) + 2 = (—3)? + (—2)*. 
Since these eight representations can all be obtained from any one of them 
by interchanging the signs of 2 and 3 or by interchanging the summands, 


there is “essentially” only one way of doing this. Thus, from our point of 
view, 13 is uniquely representable as the sum of two squares. 


SECTION 12.2 Sums of Two Squares S 309 


m We have shown that every prime p such that p — 1 (mod 4) is 
expressible as the sum of two squares. But other integers also enjoy this 
property; for instance, 


10 = 1? t5». 


The next step in our program is to characterize explicitly those positive 
integers which can be realized as the sum of two squares. 


THEOREM 12-3. Let the positive integer n be written as п = N?m, 
where m is square-free. Then n can be represented as the sum of 
two squares if and only if m contains no prime factor of tbe form 
4k + 3. 


Proof: To start, suppose that m has no prime factor of the form 4k 
+ 3. If m = 1, then n =N? + 0? and we are through. In the case 
in which m > 1, let m = рр, · p. be the factorization of m into 
a product of distinct primes. Each of these primes p,, being equal 
to 2 or of the form 4k + 1, can be written as the sum of two squares. 


Now, the identity 
(g bed) = (ac + bd)? + (ad — be)? 
shows the product of two (and, by induction, any finite number) 
integers each of which is representable as a sum of two squares is 
likewise so representable. Thus there exist integers х and y satis- 
fying m = x? + y". We end up with 
n-Nm-NG + y» = (№ + (№, 
а sum of two squares. 
Now for the opposite direction. Assume that n can be rep- 
resented as the sum of two squares, 
п= Ф + = №т 
and let p be апу odd prime divisor of m (without loss of generality, 
it may be assumed that m > 1). If d = gcd(a, b), then а = rd, 
b = sd, where gcd(r, s) = 1. We get 
dre + 5) = №т 


and so, m being square-free, d? | №. But then 
+ = (№/4)т= tp 


310 Representation of Integers as Sums of Squares CHAPTER 12 


for some integer t, which leads to 
r? + 52 =0 (mod p). 


Now the condition gcd(r, s) = 1 implies that one of r or s, say r, 
is relatively prime to p. Let r’ satisfy the congruence 


rr’ = 1 (mod р). 


When the equation r? + s*=0 (mod p) is multiplied by (7’)?, we 
obtain - 


(sr)? + 1 = 0 (mod p) 


or, to put it differently, (—1/p) = 1. Since —1 isa quadratic residue 
of p, Theorem 9-2 ensures that p= 1 (mod 4). The implication of 
our reasoning is that there is no prime of the form 4& + 5 which 
divides m. 


As a corollary to the preceding analysis, we have 


COROLLARY. A positive integer n is representable as the sum of two 
squares if and only if each of its prime factors of the form 4k + 3 
occurs to an even power. 


Example 12-1 
The integer 459 cannot be ә ОШ as the sum of two squares, since 
459 = 3? . 17, with the prime 3 occurring to an odd exponent. On 
the other hand, 153 = 32 - 17 admits the representation 


153 = 32(42 + 12) = 122 + 32, 


Somewhat more complicated is the example n = 5 - 7^ - 13 - 17 
In this case, we have 


Jw AUN MAL ЕЛЕ a M 
Two applications of the identity appearing in Theorem 12-3 give 
(3? + 22)(42 + 12) = (12 +.2)?-+ (3. — 89 = 142+ 5? 
and 
(22 + 1?)(14? + 52) = (28 + 5) + (10 — 14)? = 332+ 4°. 
When these are combined, we end up with 


(n POP A) 231 29. 


SECTION 12.2 Sums of Two Squares 311 


There exist certain positive integers (obviously, not primes of 
the form 4k + 1) which can be represented in more than one way as the 
sum of two squares. The smallest is 


25 = 42 + 32 = 52 + 07. 
If a= b (mod 2), then the relation 
it atey (ez »y 
es(ti ioi 
'ailows us to manufacture a variety of such examples. Take n = 153 as 
an illustration; here, 


a — 2 
инт. = (E23 (90 лае 
2 2 
and 
153 = 51.3 = (2 tsy- (22) - 272 — 24 
2 2 
so that 


132 — 42 = 272 — 242, 
This yields the two distinct representations 
272 + 42 = 24 + 13? = 745. 


At this stage, a natural question should suggest itself: What pos- 
itive integers admit a representation as the difference of two squares? 
We answer this below. 


THEOREM 12-4. A positive integer n can be represented as the dif- 

ference of two squares if and only if n is not of the form ák + 2. 

Proof: Since а? = 0 or 1 (mod 4) for all integers a, it follows that 
@ — b?=0, 1, or 3 (mod 4). 


Thus, if n= 2 (mod 4), we cannot have n = € — b? for any choice 
of a and b. 


312 Representation of Integers as Sums of Squares CHAPTER 12 


Turning affairs around, suppose that the integer 7 is not of 
the form 4k + 2; that is to say, n= 0, 1, or (той 4). If n= 1 or 
3 (mod 4), then n + 1 and я — 1 are both even integers; hence, 
n can be written as 


n= (= 1) (== 1y 
2 2 4 
a difference of squares. If n = 0 (mod 4), then we have 


ну) 


Сокошлву. An odd prime is the difference of two successive squares. 


Examples of this last corollary are afforded by 
11 = 6: — 52, 17 = 9! — 8 and 29 = 15? — 14. 


Another point worth mentioning is that the representation of a 
given prime р as the difference of two squares is unique. To see this, 


suppose that 
p= æ- b= (a— b(a- b, 
where a > b> 0. Since 1 and pare the only factors of p, necessarily we 
have 
a—b=1 and atb=p, 
from which it may be inferred that 


an tI and pnb 


Thus, any odd prime pcan be written as the difference of the squares of 
two integers in precisely one way; namely, as 
p(en fea); 
2 2 
A different situation occurs when we pass from primes to arbi- 
trary integers. Suppose that ә is a positive integer which is neither prime 


nor of the form ák + 2. Starting with a divisor d of n, put d' = n/d (it 
is harmless to assume that d = d'). Now if d and d' are both even, or 


eT) 


— SECTION 12.2 Sums of Two Squares б T? 313 


both odd, then (d + 4')/2 and (d — 4')/2 are integers. Furthermore, 


we may write 
- !- atey - (zs) 
n dd ( 2 2 è 


By way of illustration, consider the integer n = 24. Here, 


and 


В: $3 4y - (sy - £ 
24 m 6.4 c =) =>, 


giving us two representations for 24 as the difference of squares, 


PROBLEMS 12.2 


1. Represent each of the primes 113, 229, and 373 as a sum of two 

squares. 

2. (a) Ithas been conjectured that there exist infinitely many primes 
p such that p = т + (п + 1)? for some positive integer n; 
for example, 5 = 12 + 22 and 13 = 2! + X. Find five more of 
these primes. 

(b) Another conjecture is that there are infinitely many primes p 
of the form p = 2? + p, where p, 15 a prime. Find five such 
primes. 

3. Establish each of the following assertions: 

(a) each of the integers 2%, where n = 1,2, E « 


two squares; 
(b) if næ 3 or 6 (mod 9), then я cannot be represented as а sum 
of two squares; 
(с) if n is the sum of two triangular numbers, then 4n + 1 is the 
sum of two squares; 
(d) every Fermat number F, = 2" + 1, 
as the sum of two squares; 


„is a sum of 


where n = 1, can be ex- 


"neufs dis 


314 Representation of Integers as Sums of Squares CHAPTER 12 


5. (a) Show that a positive integer 7 is a sum of two squares if and 
only if n = 2”@b, where m 2 0, aisan odd integer, and every 
prime divisor of b is of the form 4k + 1. 
(b) Write the integers 3185 = 5 - 7? - 13; 39690 = 2 - 34-5 · 75; 
апа 62920 = 23- 5 . 11? - 13 as a sum of two squares. 

6. Find a positive integer having at least three different representa- 
tions as the sum of two squares, disregarding signs and the order 
of the summands. { Hint: Choose an integer which has three distinct 
prime factors, each of the form 4k + 1.] 

7. If the positive integer п is not the sum of squares of two integers, 
show that 7 cannot be represented as the sum of two squares of 
rational numbers. (Hint: By Theorem 12-3, there is a prime р = 3 
(mod 4) and an odd integer k such that p*| n, while p** ! J n. If 
n = (a/b)? + (c/d)2, then p will occur to an odd power on the left- 
hand side of the equation n(bd)? = (ad)? + (bc)?, but not on the 
right-hand side.] 

8. Prove that the positive integer 7 has as many representations as the 
sum of two squares as does the integer 27. [Hint; Starting with a 
representation of as a sum of two squares, obtain a similar rep- 
resentation for 2n, and conversely.] 

9. (2) If nis a triangular number, show that each of the three suc- 

cessive integers 872, 81? + 1, 8r? + 2 can be written as a sum 
"of tv’o squares. 

(b) Prove that of any four consecutive integers, at least one is not 
representable as a sum of two squares. 

10. Prove that: 

(a) ifa prime number is the sum of two or four squares of dif- 
ferent primes, then one of these primes must be equal to 2; 

(b) ifa prime number is the sum of three squares of different 
primes, then one of these primes must be equal to 3. 

11. (а) Let p be an odd prime. If pl a? + b?, where gcd(a , b) = 1, 
prove that p = 1 (mod 4). [Hint: Raise the congruence а? 
= — p? (mod p) to the power (p — 1)/2 and apply Fermat's 
Theorem to conclude that ( —1)^7 = 1.] 

(b) Use part (a) to show that any positive divisor of a sum of two 
relatively prime squares is itself a sum of two squares. 

12. Establish that every prime р of the form 8k + 1 or 8k + 5 сап be 

written as p = @ + 2b? for some choice of integers a and b. [Hint: 
Mimic the proof of Theorem 12-2.] 


SECTION 12.3 Sums of More than Two Squares 315 


13. Prove that: 

(a) A positive integer is representable as the difference of two 
squares if and only if it is the product of two factors which 
are both even or both odd. 

(b) A positive even integer can be written as the difference of two 
squares if and only if it is divisible by 4. 

14. Verify that 45 is the smallest positive integer admitting three dis- 
tinct representations as the difference of two squares. [Hint: See part 
(a) of the previous problem.] 

15. For any n > 0, show that there exists a positive integer which can 
be expressed in я distinct ways as the difference of two squares. 
[Hint: Note that 22" +1 m (229—8 24-1) — (2377A — 207 1)2 for 
k-12,...,n] 

16. Prove that every prime p= 1 (mod 4) divides the sum of two rel- 
atively prime squares, where each square exceeds 3. (Hint: Given 
an odd primitive root rof p, r* = 2 (mod р); hence r*+ - 1/41 
= —4 (mod p).] 

17. Show that the equation 7? + (п + 1)? = m? has по solution in the 
positive integers. 

18. The English number theorist G. H. Hardy relates the following story 
about his young protege Ramanujan: “I remember going to see him 
once when he was lying ill in Putney. I had ridden in taxi-cab No. 
1729, and remarked that the number seemed to me rather a dull 
one, and that I hoped it was not an unfavorable omen. ‘No,’ he re- 
flected, ‘it is a very interesting number; it is the smallest number 
expressible as the sum of two cubes in two different ways.' " Verify 


Ramanujan's assertion. 


12.3 SUMS OF MORE THAN TWO SQUARES 


While not every positive integer can be written as the sum of two squares, 
what about their representation in terms of three squares (0? still per- 
mitted)? With an extra square to add, it seems reasonable that there 
should be fewer exceptions. For instance, when only two squares are 
allowed, we have no representation for such integers as 14, 33, and 67, 


but 
14 = 32 + 22 + 12,33 = 5 + 22 + 22,67 = 7 +'32 + 32. 


316 Representation of Integers as Sums of Squares CHAPTER 12 


It is still possible to find integers which are not expressible as the sum 
of three squares. A theorem which speaks to this point is 


THEOREM 12-5. No positive integer of the form 4"(8m + 7) can be 
represented as the sum of three squares. 


Proof: To start, let us show that the integer 8m + 7 is not expres- 
sible as the sum of three squares. For any integer а, we have а? 
= 0, 1, or 4 (mod 8). It follows that 


€ + b + c7 0, 1, 2, 3, 4, 5, or 6 (mod 8) 


for any choice of a, b, c. Since 8m + 7 = 7 (mod 8), the equation 
e + b + с = 8m + 7 is impossible. 

Next, let us suppose that 4"(8m + 7), where n = 1, can be 
written as Е 


4"(8т + 7) =@ +2 +e. 


Then each of the integers a, b, c must be even. Putting а = 2a,, 
b = 2b, c = 2c, we get 


4^7 (8m 7) = a? + bi + c. 


If n — 1 > 1, the argument may be repeated until 8m + 7 is even- 
tually represented as the sum of three squared integers; this, of 
course, contradicts the result of the first paragraph: 


One can prove that the condition of Theorem 12-5 is also suffi- 
cient in order that a positive integer be realizable as the sum of three 
squares; however, the argument is much too difficult for inclusion here. 
Part of the trouble is that, unlike the case of two (or even four) squares, 
there is no algebraic identity which expresses the product of sums of 
three squares as a sum of three squares. 

With this trace of ignorance left showing, let us make a few his- 
torical remarks: Diophantus conjectured, in effect, that no number of the 
form 8m + 7 is the sum of three squares, a fact easily verified by Des- 
cartes in 1638. It seems fair to credit Fermat with being the first to state 
in full the criterion that a number can be written as a sum of three squared 
integers if and only if it is not of the form 4"(8m + 7), where m and п 
are nonnegative integers. This was proved in a complicated manner by 
Legendre in 1798 and more clearly (but by no means easily) by Gauss 
in 1801. 


S pubs unie Pra c MF BM опр a e p 


SECTION 12.3 Sums of More than Two Squares 317 


As just indicated, there exist positive integers which are not rep- 
resentable as the sum of either two or three squares (take 7 and 15, for 
simple examples). Things change dramatically when we turn to four 
squares: there are no exceptions at all! 

The first explicit reference to the fact that every positive integer 
can be written as the sum of four squares, counting 0*, was made by 
Bachet (in 1621) and he checked this conjecture for all integers up to 
325. Fifteen years later, Fermat claimed that he had a proof using his 
favorite method of infinite descent, but, as usual, he gave no details. Both 
Bachet and Fermat felt that Diophantus must have known the result; the 
evidence is entirely conjectural: Diophantus gave necessary conditions 
in order that a number be the sum of two or three squares, while making 
no mention of a condition for a representation as a sum of four squares. 

One measure of the difficulty of the problem is the fact that Euler, 
in spite of his brilliant achievements, wrestled with it for more than forty 

‚ years without success. Nonetheless his contribution towards the even- 
tual solution was substantial; Euler discovered the fundamental identity 
which allows one to express the product of two sums of four squares as 
such a sum, as well as the crucial result that the congruence x* + y? 
+ 1 = 0 (mod p) is solvable for any prime p. A complete proof of the 
four-square conjecture was published by Lagrange in 1772, who ac- 
knowledged his indebtedness to the ideas of Euler. The next year, Euler 
offered a much simpler demonstration, which is essentially the version 
to be presented here. 

It is convenient to establish two preparatory ]emmas, so as not 
to interrupt the main argument at an awkward stage. The proof of the 
first contains the algebraic identity which allows us to reduce the four- 
square problem to the consideration of prime numbers only. 


LEMMA 1 (Euler). Jf tbe integers m and n are eacb tbe sum of four 
squares, then mn is likewise so representable. 


Proof lf т = a? + a? + а? + аа ата n= bê + be + by + b? 
for integers а, b, then 
mn = (a? + a? + a? + а) (b? + bi + be +b’) 
= (a,b, + ab. + ab, + аһ)? 
+ (a,b; — mb, + ab — a,b) 
+ (ab, — a,b, — Br + a;b)? 
+ (a,b, + ab, — ab: — ab)? 


318 Representation of Integers as Sums of Squares CHAPTER 12 


One confirms this cumbersome identity by brute force: just mul- 
tiply everything out and compare terms. The details are not suit- 
able for the printed page. 


Another basic ingredient in our development is 


LEMMA 2. [р is an odd prime, then the congruence 
x? + у? + 1250 (mod p) 


bas a solution x), y, where 0 < x, = (p — 1)/2 and0 < vy = 
(p — 1)/2. 


Proof: The idea of the proof is to consider the following two sets: 
— a 
в {1+ ort 1 ta 056 1+ (Ez) } 


s= [> ipis Трав (252) 
2 

Evidently, no two elements of the set S, are congruent modulo p. 
For if 1 + д2 == 1 + x? (mod D), then either x, = x, (mod p) or 
X, = — x, (mod p). But the latter consequence is impossible, since 
0 <x, + № <p (unless x, = x, = 0), whence x, = x, (mod p), 
which implies that x, = x;. In the same vein, no two elements of 
$ аге congruent modulo р. 


Together 5, and $ contain 2[1 + +Q — 1)] = p + 1 in- 


tegers. By the Pigeon-hole Principle, some integer in 5, must be 
congruent modulo p to some integer in 5; that is, there exist A Jb 
such that 


1 + д? = —y,? (mod р), 
where 0 x x, = (p — 1)/2 and 0 x x, € (p 1)/2. 


COROLLARY. Given am odd prime p, there exists an integer 
k < p such that kp is the sum Of four squares. 


Proof: According to the theorem, we can find integers x, and y» 


0x x -«p/2 05 x < p/2 | 


SECTION 12.3 Sums of More than Two Squares 319 


such that 
x + yi t 2+ 0 = kp 
for a suitable choice of &. The restrictions on the size of x, and у 
imply that 
kp = x + y? +1 < 82/4 + ру +1 <р? 


and so k < p, as asserted in the corollary. 


We digress for a moment to look at an example. If one takes 
p= 17, then the sets 5, and 5, become 


5, = [1,2, 5, 10, 17, 26, 37, 50, 65] 


and 
$, = (0, —1, —4, —9, —16, —25, —36, —49, —ó4]- 


Modulo 17, the set 5, consists of the integers 1, 2, 5, 10, 0, 9, 3, 16, 14, 
while those in 5; are 0, 16, 13, 8, 1, 9, 15,2, 4. Lemma 2 tells us that some 
member 1 + x? of the first set is congruent to some member — у? of the 
second set. We have, among the various possibilities, 


1 + 52 == 9 = —5! (mod 17) 
or 1 + 52 + 52 = 0 (mod 17). It follows that 
3.17= 1:+ 52+ 5: + 0 


is a multiple of 17 written as а sum of four squares. 
The last lemma is so essential to our work that it is worth pointing 


out another approach, this one involving the theory of quadratic resi- 
dues.'If p= 1 (mod 4), we may choose x, to be a solution of хі == —1 
(mod p) (this is permissible by the corollary to Theorem 9-2) and у 
= 0 to get 


x? + y? 1250 (mod p). 


Thus, it suffices to concentrate on the case р== 3 (mod 4). We first pick 
the integer ato be the smallest positive quadratic nonresidue of p (keep 
in mind that a > 2, since 1 is a quadratic residue). Then 


(—afp = (—1/p) (a/p) = (-1)(-1) = 1, 


320 Representation of Integers as Sums of Squares CHAPTER 12 


so that —a is a quadratic residue of р. Hence, the congruence 
x? = —a (mod p) 
admits а solution х, with 0 < x, = (p — 1)/2. Now a — 1, being positive 
and smaller than a, must itself be a quadratic residue of p. Thus, there 
is an integer у, 0 < y; = (p — 1) /2, satisfying 
Jy? a — 1 (mod p). 
The conclusion: 
№: + №: +1=-а+ (а 1) +1=0(то4р). 


With these two lemmas among our tools, we now have the nec 
essary information to carry out a proof of the fact that any prime can be 
realized as the sum of four squared integers. 


THEOREM 12-6. Any prime p can be written as tbe sum of four 
"squares. 


Proof: The theorem is certainly true for p = 2, since 2 = 1? + 1? 
+ 0? + 0+, Thus, we may hereafter restrict our attention to odd 
primes, Let & be the smallest positive integer such that &p is the 
sum of four squares; say, 
Rpm xk + 5 aun. 

By virtue of the foregoing corollary, & < р. The crux of our argu- 
ment is that & 1. 

We make a start by showing that & is an odd integer. For a 
proof by contradiction, assume that & is even, Then x, у z, ware 


all even; or all are odd; or two are even and two are odd, In any 
event, we may rearrange them, so that 


x= y(mod 2) and z= w (mod 2). 
It follows that 
т 0,0 У, 1G — ш), 2 + и) 


are all integers and 
ro- 2] (a) (а) (6) 


isa representation of (&/2)p as a sum of four squares. This violates 
the minimal nature of & giving us our contradiction. 


f SECTION 12.3 Sums of More than Two Squares 321 


There still remains the problem of showing that k = 1. 
Assume not; then & being an odd integer, is at least 3. It is there- 
fore possible to choose integers 4, b, c, d such that 


a= x (mod k), b= y (mod k), c= z (mod k), d= w (mod №) 


and 
lal < &/2, bl € &2,4 cl < k/2,1 dl < 6/2. 
(To obtain the integer a, for instance, find the remainder r when 
xis divided by k; put a = rora r7 kbaccording as r < &/2 or 
r> k/2.) Then 
abba c dim y! + 2 + wmo (mod k) 


| and so 
+++ nk 
for some nonnegative integer л, Because of the restrictions on the 
| size of a, b, c, d, 
Ў Danke at bit ot di «AQU2) = № 
We cannot have n = 0, since this would signify that a = bec 
= 4 = 0 and, in consequence, that & divides each of the integers 
x, y, z, ш. Then №: kp, or kl p, which is impossible in light of the 


inequality 1 < k < P. The relation nk < k? also allows us to con. 
clude that n < k. In sum: 0 < п < k. Combining the various pieces, 


we get 
юр = (hp) (n) = GP y! zt wat bh eo d) 
- pci a 


where r= ха + yb + zc + wd, 

s= xb— уа + zd — wc, 

t= xc— уа zat wb, 

u= xd + yc — zb - wa. 
It is important to observe that all four of 7; $ 6 u are divisible by A. 
In the case of the integer r, for example, one has 
yb + 26+ иат a + b+ а + dim 0 (mod 0). 
Similarly, s= 1 um 0 (mod K). This leads to the representation 


np = (00° + (50° + (ke)? + Cu/B)*, 


r=xat 


vy 


322 Representation of Integers as Sums of Squares CHAPTER 12 | 


where 1/k, 5/6, t/k, u/kare all integers. Since 0 < п < k, we there- | 
fore arrive at a contradiction to the choice of kas the smallest pos- 
itive integer for which &p is the sum of four squares. With this | 
contradiction, & — 1, and the proof is finally complete. | 


This brings us to our ultimate objective, the classical result of 
Lagrange: 


THEOREM 12-7 (Lagrange). Any positive integer n can be written 
as the sum of four squares, some of which may be zero. 


Proof: Clearly, the integer 1 is expressible as 1 = 1? + 0° + 0? 
T+ 0°, a sum of four squares. Assume that п > 1 and let я = 
Dips +++ p, be the factorization of п into (not necessarily distinct) 
primes. Since each р, is realizable as a sum of four squares, Euler’s 
Identity permits us to express the product of any two primes as a 
sum of four squares. This, by induction, extends to any finite number 


of prime factors, so that applying the identity rtimes, we obtain the 
desired representation for n. 


Example 12-2 
To write the integer 459 = 33. 17 as the sum of four squares, we 
use Euler's Identity as follows: 
459 aS? iho AD 
= 32012 + 1? + 1? + 02) (42 + 12 + 0 + 02) 
= 33 (4 +1+0+0)? + (1-4+0-0)2 
+ 0©—-0-—4+0)2 + (0+0-1-0)4 
= 325° + 32 + 42 + 12] 
= 152 + 92 + 122 + 32, 


While squares have received all our attention so far, many of the 
ideas involved generalize to higher powers. 

In his book, Meditationes Algebraicae (1770), Edward Waring 
stated that each positive integer is expressible as a sum of at most 9 cubes, 
also a sum of at most 19 fourth powers, and so on. This assertion has 
been interpreted to mean: Can each positive integer be written as the 
sum of no more than a fixed number g(&) of kth powers, where g(&) 


SECTION 12.3 Sums of More than Two Squares 323 


depends only on &, not the integer being represented? In,other words, 
for a given k, a number g(&) is sought such that every n > 0 can be 


represented in at least one way as 
* 


n=a+ att +--+ + agn" 


where the a, are nonnegative integers, not necessarily distinct. The re- 
sulting problem was the starting point of a large body of research in 
number theory on what has become known as '"Waring's Problem." There 
seems little doubt that Waring had limited numerical grounds in favor 
of his assertion and no shadow of a proof. 

As we have reported in Lagrange's Theorem, g(2) = 4. Except 
for squares, the first case of a Waring-type theorem actually proved is 
attributed to Liouville (1859): every positive integer 1s a sum of at most 
53 fourth powers. This bound for g(4) is somewhat inflated, and through 
the years was progressively reduced. The existence of g() for each value 
of kwas resolved in the affirmative by Hilbert in 1909; unfortunately, his 
proof relies on heavy machinery (including a 25-fold integtal at one 
stage) and is in no way constructive. 

Once it is known that Waring's Problem admits a solution, а nat- 
ural question to pose is "How big is g(k)?” There is an extensive liter- 
ature on this aspect of the problem, but the question itself is still open. 
A sample result, due to Dickson, is that g(3) = 9, while 


B=2+23+PERVEVFERtEUtVtP 


and 
B9=H+h4+32+94F34+3+ PtP FP 

are the only integers that actually require so many as 9 cubes in their 
representation; each integer greater than 239 can be realized as the sum 
of at most 8 cubes. In 1942, Linnik proved that only a finite number of 
integers need 8 cubes; from some point onwards 7 will suffice. Whether 
6 cubes are also sufficient to obtain all but finitely many positive integers 
is still unsettled. 

The cases k = 4 and k = 5 have turned out to be the most subtle. 
For many years, the best known result was that g(4) lay somewhere in 
the range 19 = 8(4) = 35, while (5) satisfied 37 = g(5) = 54. Sub- 
sequent work (1964) has shown that g(5) = 37. The upper bound on 
g(4) has decreased dramatically in the past decade, the sharpest esti- 
mate being g(4) = 20. It has also been proved that every integer less 


324 Representation of Integers as Sums of Squares CHAPTER 12 


than 10° or greater than 10% can be written as a sum of at most 19 
fourth powers; thus, in principle, g(4) can be calculated. The recent 
(1986) announcement that in fact 19 fourth powers suffice to represent 
all integers appears to settle this case completely. As far as k = 6 is con- 
cerned, it has been established that the formula 


gk) —[(G/2) + 2*— 2 


holds, except possibly for a finite number of values of & There is con- 
siderable evidence to suggest that this expression is correct for all &. 

For k z 3, all sufficiently large integers require fewer than g(k) 
kth powers in their representations. This suggests a general definition: 
let G(R) denote the smallest integer r with the property that every suf- 
ficiendy large integer is the sum of at most r &th powers. Clearly, G(&) 
= g(&). Exact values of G(&) are known only in two cases; namely, G(2) 
= 4 and G(4) = 16. Linnik's result on cubes indicates that G(3) < 7, 
while as far back as 1851 Jacobi conjectured that G(3) = 5. In recent 
years the bounds G(5) = 21 and G(6) = 31 have been established. 

Another problem that has attracted considerable attention is 
whether an mth power can be written as a sum of n mth powers, with 
n > 3, The first progress was made in 1911 with the discovery of the 
smallest solution in 4th powers, 


3534 = 30* + 120* + 272* + 315*. 
In the 5th powers, the smallest solution is 
725 = 195 + 435 + 465 + 475 + 67°. 


However, for 6th or higher powers no solution is yet known. 

There is a related question; it may be asked, “Can an nth power 
ever be the sum of less than я nth powers?" Euler conjectured that this 
is impossible, but in 1968 Lander and Parkin came across the Tepresen- 
tation 


1445 = 275 + 845 + 1105 + 1335. 


With the subsequent increase in computer power and sophistication, N. 
Elkies was able to show (1987) that for fourth powers there are infinitely 
many counterexamples to Euler's conjecture. The one with the smallest 
values is 


422481* = 95800* + 2175194 + 414560*. 


К SECTION 12.3 Sums of More than Two Squares е 325 


PROBLEMS 12.3 


1. Without actually adding the squares, confirm that the following re- ` 

lations hold: 

(a) 12+ 22 + 3?-+ «++ + 232 + 242 = 703; 

(b) 18 + 192 + 20? + ++. + 27 + 282 = 775; 

(c) 2+ 52+ 8+ --- + 23? + 26? = 485 

(d) G + 122 + 182 + ... + 42? + 48? = 95? — 41°. 

2. Regiomontanus proposed the problem of finding twenty squares 
whose sum is a square greater than 300,000. Furnish two solutions. 
(Hint: Consider the identity ~ 

(a+ а? +... + аг)? 
= (а t+ apt. tala» 
+ Qaa + Qaa) + +++ + (2a, - 14,)?] 

3. Showthat и? + (n+ 1)? + (n +2)? +... + (n+ k)? is not equal 
то a square whenever 1? + 2? + 5* +... + k? is а quadratic non- 
residue of k + 1. 

4. Establish that the equation 2 + b? + 2 + a + b+ с = 1 ваз по 

| solution in the integers. [Hint: The equation in question is equiv- 

| alent to the equation (2a + 1)? + (2b + 1)? TOO pH) tore) 

5. Fora given positive integer , show that either n or 2n is a sum of 

three squares. 

6. An unanswered question is whether there exist infinitely many 
primes p such that p = 7 + (n + 1)? + (п + 2)?, Юг some п 
> 0. Find three of these primes. 

7. 1п our examination of n = 459, no repres 
squares was found. Express 459 as a sum of three squares. 

8. Verify each of the statements below: 


(а) Every positive odd integer is of the form a? + b? + 2c, where 


a, b, care integers. [Hint: Given n> 0,4n + 2 can be written 


asán +2 = № + y! + 22, with xand y odd and z even. Then 


entation as a sum of two 


п +1= ау: iG 2/2) 


is either of the form @ + № ЗО of. 
b, care integers. [Hint: If n> 0 cannot 
be written as a sum @ + b? + c, then it is of the form 


4" (8k + 7). Apply part (а) to the odd integer 8k + 7.] 


(c) Every positive integer is of the form 2 + b? — с, where а, 
> 0, choose а such that 


b, c are integers. [Hint: Given п 
п — 2 isa positive odd integer and use Theorem 12-4.] 


(b) Every positive integer 
@+ b + 2с, where а, 


326 


9. 


10. 


11. 


12. 


13 


14. 


15. 


16. 


Representation of Integers as Sums of Squares CHAPTER 12 


Establish the following: 

(a) No integer of the form 9k + 4 or 9k + 5 can be the sum 
of three or fewer cubes. [Hint: Notice that a? = 0, 1, or 8 
(mod 9) for any integer а.] 

(b) The only prime р which is representable as the sum of two 
cubes is p — 2. [Hint: Use the identity 


@ + b = (а + b)((a— b) + ab). 


(c) A prime pcan be represented as the difference of two cubes 
if and only if it is of the form р = 3k(k + 1) + 1, for some 
k. 

Express each of the primes 7, 19, 37, 61, and 127 as the difference 

of two cubes. 

Prove that every positive integer can be represented as a sum of 

three or fewer triangular numbers. [Hint: Given n > 0, express 8 

+ 3 as a sum of three odd squares and then solve for n.) 

Show that there are infinitely many primes p of the form p — 

€ + b? + c + 1, where a, b, care integers. (Hint: By Theorem 

9-8, there are infinitely many primes of the form p = 8k + 7. Write 

p—178k-t6-— 2 + № + cforsome a, b, с] 

Express the integers 231 = 3 . 7 - 11, 391 = 17 . 23, and 2109 

= 37 - 57 as sums of four squares. 

(a) Prove that every integer n = 170 isa sum of five squares, none 
of which are equal to zero. [Hint: Write n — 169 = 2 + b? 
+ c + d'for some integers a, b, c, dand consider the cases 
in which one or more of а, b, c is zero.] 


' (b) Prove that any positive multiple of 8 is a sum of eight odd 


squares. [Hint: If n = @ + b? + с? + а, then 8n + 8 is the 

sum of the squares of 2a + 1, 2b + 1,2c + 1, and 2d + 1] 
From the fact that n> = n (mod 6) conclude that every integer п 
can be represented as the sum of the cubes of five integers, al- 
lowing negative cubes. [Hint: Utilize the identity 


TD — 6k= т — (k+ 15 — (k— 1) + e + #2] 


Prove that every odd integer is the sum of four squares, two of which 
are consecutive. (Hint: For n > 0, án + 1 isa sum of three squares, 
only one being odd; but, 4n + 1 = (2a)? + (2b)? + (2c + 1)? 
gives 2n + 1 = (a+ b? + (a — b? + e + (c 1)*] 


| 


SECTION 12.3 Sums of More than Two Squares 327 


17. 


18. 


Prove that there are infinitely many triangular numbers which are 
simultaneously expressible as the sum of two cubes and the differ- 
ence of two cubes. Exhibit the representations for one such trian- 
gular number. [Hint: In the identity 
(27k)? — 1 = (94 — 3k)? + (96° — 1)? 
= (9k + 3k)? — (9k? + 1), 
take kto be ап odd integer to get 
(2n + 1)? — 1 = Qa» + (28) = (20? — (24), 
or equivalently, t, = 2 + b? = с? — 2°] 
(a) I£n — 1and n+ 1are both primes, establish that the integer 
2m? + 2 can be represented as the sum of 2, 5, 4, and 5 squares. 
(b) Illustrate the result of part (a) in the cases in which n = 4, 
6, and 12. 


Sx p 135 4 d Mibi qe e 


Fibonacci Numbers 
and 3 
Continued Fractions 


„what is physical 


is subject to the laws of 


mathematics, 
and what is spiritual 
to the laws of God, 
and the laws of mathematics 
are but the expression 
of the thoughts of God." 


THOMAS HILL 


13.1 THE FIBONACCI SEQUENCE 


Perhaps the greatest mathematician of the Middle Ages was Leonardo of 
Pisa, who wrote under the name of Fibonacci—a contraction of filius 
Bonacci, that is, son of Bonacci. The Hindu-Arabic numeral system 
became known to Western Europe through his work Liber Abaci which 
was written in 1202, but survives only in a revised 1228 edition (the word 
"abaci" in the title does not refer to the abacus; rather it means com- 
putation in general), It is ironic that despite his many achievements Fi- 
bonacci is remembered today mainly because the 19th century number 
theorist Edouard Lucas attached his name to a sequence that appears in 
a trivial problem in the. Liber Abaci. Specifically, Fibonacci posed the 
following problem dealing with the number of offspring generated by a 
pair of rabbits conjured up in the imagination: 


A man put one pair of rabbits in a certain place entirely surrounded by a 
wall. How many pairs of rabbits can be produced from that pair in a year, 
if the nature of these rabbits is such that every month each pair bears a 
new pair which from the second month on becomes productive? 


Assuming that none of the rabbits dies, then a pair is born during the 
first month, so that there are two pairs present. During the second month, 
the original pair has produced another pair. One month later, both the 
original pair and the firstborn pair have produced new pairs, so that three 
adult and two young pairs are present, and so on. (The figures are tab- 
ulated in the chart on page 287.) The point to bear in mind is that each 
month the young pairs grow up and become adult pairs, making the new 
"adult" entry the previous one plus the. previous “young” entry. Each 
of the pairs that was adult last month produces one young pair, so that 
the new “young” entry is еаца о the previous “adult” entry. 

When continued indefinitely, the sequence encountered in the 
rabbit problem 


1,1, 2, 3, 5, 8, 13, 21, 34, 55, 89, 144, 233, 377, . . . 


wl x INS 


330 


—_ D 


SECTION 13.1. The Fibonacci Sequence _ 331 


is called the Fibonacci sequence and its terms the Fibonacci numbers, 
The position of each number in this sequence is traditionally indicated 
by a subscript, so that m = 1, m = 1, м, = 2, and so forth, with Un 
denoting the mth Fibonacci number. 


Growth of Rabbit Colony 
= 
Months Adult Pairs Young Pairs Total 
1 1 1 2 
2 2 1 3 
3 3 2 5 
4 5 3 8 
5 8 5 13 
6 13 8 21 
7 21 13 34 
8 34 21 55 
9 55 34 89 
10 89 55 144 
M 144 89 233 
12 233 144 377 


The Fibonacci sequence exhibits an intriguing property, namely, 


2141 OL ty ( му; 
3=24+1 Or 47 t tu 
5=3+2 Or u; = ugit uy, 
8-543 or Ug = Us + tty: 


By this time, the general rule of formulation should be discernible: 
My ty 1, Up иа + ly m2 for n z 3. 


That is, each term in the sequence (after the second) is the sum of the 
two that immediately precede it. Such sequences, in which from a cer- 
tain point on every term can be represented as a linear combination of 
preceding terms, are said to be recursive sequences. The Fibonacci se- 
quence is the first known recursive sequence in mathematical work. Fi- 
bonacci himself was probably aware of the recursive nature of his 
Sequence, but it was not until 1634—by which time mathematical no- 
tation had made sufficient progress—that Albert Girard wrote down the 
formula. 

It may not have escaped attention that in the portion of the Fi- 
bonacci sequence which we have written down, successive terms are 
relatively prime. This is no accident, as is now proved. 


332 Fibonacci Numbers and Continued Fractions CHAPTER 13 


THEOREM 13-1. For the Fibonacci sequence, gcd(u, , 12.4) = 1 for 
every n z 1. 


Proof. Let us suppose that the integer d > 1 divides both 14, and 
1,4. Then their difference u,4, — 14, = Un- will also be divisible 

=- byd. From this and from the relation 4, — 14,-, = Uy- it may be 
concluded that 41 1, - ;. Working backwards, the same argument 
shows that d u, 3, d| u,- 4, -. . , and finally that аі 1. But 
и, = 1, which is certainly not divisible by any d > 1. This contra- 
diction ends our proof. 


Since ш = 2, м. = 5, м, = 13, and и, = 89 are all prime num- 
bers, one might be tempted to guess that и, is prime whenever the sub- 
script n > 2 is a prime. This conjecture fails at an early stage, for a little 
figuring indicates that 


и = 4181 = 37: 113. 


Not only is there no known device for predicting which z, are prime, 
but it is not even certain whether the number of prime Fibonacci num- 
bers is infinite. There is nonetheless a useful positive result whose cum- 
bersome proof is omitted: For any prime p, there are infinitely many 
Fibonacci numbers which are divisible by p and these are all equally 
spaced in the Fibonacci sequence: To illustrate, 3 divides every fourth 
term of the Fibonacci sequence, 5 divides every fifth term, while 7 di- 
vides every eighth term. 

As we know, the greatest common divisor of two positive inte- 
gers can be found from the Euclidean Algorithm after finitely many di- 
visions. By suitably choosing the integers, the number of divisions 
required can be made arbitrarily large. The’ precise statement is this: 
Given n > 0, there exist positive integers a and b such that in order to 
calculate gcd(a , b) by means of the Euclidean Algorithm exactly п 
divisions are needed. To verify the contention, it is enough to let 
4 = из лапа b = u,4,. The Euclidean Algorithm for obtaining 
BCcd(u, 4.2 Mn+) leads to the system of equations 


Un+2= 1+ Une T и, 


Une = 1+ Un F Maca 


uo —1- uc 
:-2.t0. 


DEM 


SECTION 13.1 The Fibonacci Sequence 333 


Evidently, the number of divisions necessary here is п. The reader will 
no doubt recall that the last nonzero remainder appearing in the algo: 
rithm furnishes the value of gcd(u,. ; , и„+ ,). Hence, 

8cd(u, +2, 4,41) = № = 1, 


which confirms anew that successive Fibonacci numbers are relatively 
prime. 

Suppose, for instance, that 2 = 6. The following calculations 
show that one needs 6 divisions in order to find the greatest common 
divisor of the integers t = 21 and и, = 13: 

21,7/1.--18.c. 8, 
13 1.4 8*h35; 
Өрт, 
Sal Bch Ds 
Bom die 2 TL 
2=2.1+0. 
One of the striking features of the Fibonacci sequence is that the greatest 


common divisor of two Fibonacci numbers is itself a Fibonacci number. 
The identity j . 


(1) ОО UH a 


is central to bringing out this fact. For fixed т, this identity is established 
by induction on я. When n = 1, (1) takes the form 


Um +1 = Um — th Ha Uy = Umi и 


which is obviously true. Let us therefore assume that the formula in 
question holds when 7 is one of the integers 1, 2,. . ., kand try to verify 
it when n = k + 1. By the induction assumption, 


Unt b= Ин-т Up + s. +r 
U mti- = Um — 1 Ue + u,, Uy. 
Addition of these two equations gives us 
Us + PRS ors ий) Ha Cus eto): 


By the way in which the Fibonacci numbers are defined, this expression 
is the same as 


Um + (e+ 1) = Um = 1 +: + Um Ue + 2» 


334 Fibonacci Numbers and Continued Fractions CHAPTER 13 


which is precisely formula (1) with и replaced by k + 1. The induction 
step is thus complete and (1) holds for all m and n. 
One example of formula (1) should suffice: 


Uy = Ug +3 uy + uuu = 5 . 2+ 8.3 = 34. 
The next theorem, aside from its importance to the ultimate result which 
we seek, has an interest all its own. 


THEOREM 13-2. For т > 1, n > 1, Up, is divisible by ит. 


Proof: We again argue by induction оп я, the result being certainly 
true when = 1. For our induction hypothesis, let us assume that 
Umm is divisible by u,, for n — 1,2,. .., & The transition to the 
CASE Umit 1) = Ume+ m iS realized using formula (1); indeed, 


Ить+ = Ume- Чн + Ume Um + i 


Since 4, divides tm, by supposition, the right-hand side of this 
expression (and hence, the left-hand side) must be divisible by и. 
Accordingly, 1, | 14,04, Which was to be proved. 


Preparatory to evaluating gcd(z, , и,), we dispose of a technical 
lemma. 


LEMMA. [fm = qn + r, then gcd(u, , и,) = gcd(u, , un). 


Proof: To begin with, formula (1) allows us to write 
8cd(u, , и,) = gcd(u,, + r, и,) 
асас e rur up cq). 


An appeal to Theorem 13-2 and the fact that gcd(a + с, b) 
= gcd(a , b), whenever bl c, gives 


Bcd(u, — и, H tign Uy 4 Un) = BCA typ us, thy) 


Our claim is that Bcd(u,, —, , и,) = 1. To see this, set 
d = gcd(1,,- , , u,). The relations d| м, and и„| Ug imply that 
d| и»; and so d is a (positive) common divisor of the successive 
Fibonacci numbers Ugn—, and и. Since successive Fibonacci num- 
bers are relatively prime, the effect of this is that d — 1. 


SECTION 13.1 The Fibonacci Sequence и 335 


To finish the proof, the reader is left the task of showing 
that whenever gcd(a , с) = 1, then gcd(a , bc) = gcd(a , b). 
Knowing this, we can immediately pass on to 


8cd(u, , и,) = ged (tpn > ги), и) = gcd(u, , и,), 


the desired equality. 


This lemma leaves us in the happy position in which all that is 
required is to put the pieces together. 


THEOREM 13-3. The greatest common divisor of two Fibonacci 
numbers is again a Fibonacci number; specifically, 


gcd(u, , u,) = u,, where d = gcd(m , п). 


Proof: Assume that m = n. Applying the Euclidean Algorithm to 
m and n, we get the following System of equations: 


m=qntn, O<n<n 

n= Фп +, 0<љ<л 

п = Ont т, 0crn-n 
T= 2 = Qa + rm, D SS uty al 
Teo = Qa x th, +0. 


In accordance with the previous lemma, 
Bcd(u,, , и,) = gcd(u,, и,) = gcd(u,, , un) 
сваи И, ый) 


Since r, | r, .,, Theorem 13-2 tells us that u,, | Up, whence 


Bcd(u,, u) = u,,, But r„, being the last nonzero remainder 
in the Euclidean Algorithm for m and n, is equal to gcd(m , п). 
Tying up the loose ends, we get 


Scd(u, , и) = иды, m 
and in this way the theorem is established. 


336 Fibonacci Numbers and Continued Fractions CHAPTER 13 


It is interesting to note that the converse of Theorem 13-2 can 
be obtained from the theorem just proved; in other words, if u, is divis- 
ible by um, then we can conclude that я is divisible by m. Indeed, if 
u,,| u,, then ged(z, , и,) = Um. But according to Theorem 13-3, the 
value of gcd(u, , и„) must be equal to иса», m- The implication of all 
this is that gcd(m , n) = m, from which it follows that m| ә. We sum- 
marize these remarks in: 


COROLLARY. In the Fibonacci sequence, u, | и, if and only if m| n 
Jor m > 2. 


A good illustration of Theorem 13-3 is provided by calculating 
gcd(14, , 145) = gcd(987 , 144). From the Euclidean Algorithm, 


987 = 6 - 144 + 123, 
144— 1.123 + 21, 
1239 5:721 *F'18; 
2171.18 + 3, 
18=6-3+0, 
and so gcd(987 , 144) = 3. The net result is that 
gcd( us QM) = 3 = ш = Ирса(16 , 125 


as asserted by Theorem 13-3. 


PROBLEMS 13.1 

1. Given any prime p # 5, it is known that either Up=- OF Uys, is di- 
visible by p. Confirm this in the cases of the primes 7, 11, 13, and 
17. 

2. Forn=1,2,. . ., 10,show that 5u,? + 4(—1)" is always a perfect 
Square. 

3. Prove that if 2| и,, then 4| (2,4 2 — un- 2); and similarly, if 3| и„, 
then 9| (4,45? — и, 15). 

4. For the Fibonacci sequence, establish that 

(а) 1,4575 и, (mod 2), hence us, t4, 14, . . . are all even inte- 
gers; 


(b) u,+5=3u, (mod 5), hence us, tho, 145,. . . are all divisible 
by 5. 


SECTION 13.1 The Fibonacci Sequence ^ 0+3 337 


5. Show that the sum of the squares of the first я Fibonacci m 
is given by the formula 


2 cu м... РР НЫ 


(Hint: For n= 2,u = ии, = Uy Un — y] 
Utilize the identity in Problem 5 to prove that for n > 3 


Une? = и Зи, — + 2(u,- 2 + uy, ОЕ u? + u’). 


7. Evaluate gcd( , t2), ged(15 , 1), and ged(u,, , из). 
8. Find the Fibonacci numbers which divide both из and из. 
9. Use the fact that z, | u, if and only if m | n to verify each of the 
assertions below: 
(a) 2| u, if and only if 3| и; 
(b) 3| u, if and only if 4| s; 
(c) 4| и, if and only if 6 |n; 
(d) 5|u, if and only if 51 n. 
10. If gcd(m, п) = 1, prove that un и, divides tm, for all m, n > 1. 
11. Itcan be shown that if u, is divided by и„ (n > m), then either the 
remainder ғ is a Fibonacci number or else u,, — ris a Fibonacci 
number. Give examples illustrating both cases. 
12. It is conjectured that there are only five Fibonacci numbers which 
are also triangular numbers. Find them. 
13. For n> 1, prove that 277! и, = n (mod 5). [Hint: Use induction 
and the fact that 2" и, +; = 2(277!u,) + 4(2"-2ц,_ 2] 
14. Пи, -acuicb- и, +2 for some n > 3, establish that the 
sum a + b cannot be a Fibonacci number. 
Prove that there is no positive integer » for which 
u, + th + u, +... и, = 161. 
[Hint: By Wilson’s Theorem, the equation is equivalent tO 24,42 = 
0 (mod 17). Since 17} t, 17 | u,, if and only if 9| m.] 
16. If 3 divides n + m, show that Un = as + Un- my +, 5 an even 
integer. 
- For n 2 1, verify that there exist n consecutive composite Fibon- 
acci numbers. 
. Prove that 9 | и, + 2; if and only if 9 | м. [Hint: Use formula v to 
establish that и, + 1 = и, (mod 9).] 
19. Use induction to show that 14, == и(—1)"+1 (mod 5) for n = 1. 
Derive the identity 


Un 7 Зи +: — Иа. п2 2. 


[Hint: Apply formula (1).] 


S 


= 
> 


338 Fibonacci Numbers and Continued Fractions CHAPTER 13 


13.2 CERTAIN IDENTITIES INVOLVING FIBONACCI NUMBERS 


We move on and develop several of the basic identities involving Fi- 
bonacci numbers; these should be useful in doing the problems at the 
end of the section. One of the simplest asserts that the sum of the first 
n Fibonacci numbers is equal to и, +; — 1. For instance, when the first 
eight Fibonacci numbers are added together, we obtain 


lt1t2T3-4-5-48t13t21254—55—1-731,— 1. 


That this is typical of the general situation follows by adding the rela- 
tions 


HQ = uy — th, 
th = Uy — Us, 


Uy = Us ~ Uj, 


Un- = Unti HO, 
Un = Unt 2 T Unyi 


On doing so, the left-hand side yields the sum of the first n Fibonacci 
numbers, while on the right-hand side the terms cance! in pairs leaving 
only 4,4; — №. But и, = 1. The consequence is that 


(2) ut yt wt ++) + uy = yee 1. 
Another Fibonacci property worth recording is the identity 
(3) Up? = Un + {Un — 1 (—1)n- 1, n= 2. 
This may be illustrated by taking, say, n = 6 and n = 7; then 
u = 82 = 13-5 —1= wu, — 1, 
u? = 137= 21-8+1= wu, 1 
The plan for establishing formula (3) is to start with the equation 
Un? инка Un oa = Un (ty — 1 + Un —2) — Und Uy = 1 


Es d aa Su T S s o. 


SECTION 13.2 Certain Identities Involving Fibonacci Numbers 339 


From the rule of formation of the Fibonacci sequence, we have u,,4, 
= и, + и, - апа so the expression in parentheses may be replaced by 
the term — u,,_ , to produce 


ОР 


The important point is that except for the initial sign the right-hand side 
of this equation is the same as the left-hand side, but with all the sub- 
scripts decreased by 1. By repeating the argument и, — и, ün- сап 
be shown to be equal to (—1)(u,,-.? — u,-; и, 3), whence 


и, — thy 1 My ma, = (Пи, m thy — 1 My a). 
Continue in this pattern. After n — 2 such steps, we arrive at 
Un? T. eis im C1) OR ши) 
= (-1)"7302- 2-1) = (717, 
which we sought to prove. 
For » = 2, formula (3) becomes 
(4) и thy os lay = 1, 


While we are on the subject, we might observe that this last identity is 
the basis of a well-known geometric deception whereby a square 8 units 
by 8 can be broken up into pieces which seemingly fit together to form 
a rectangle 5 by 13. To accomplish this, divide the square into four parts 
as shown below on the left and rearrange them as indicated on the right. 


8 
a 8 5 


T 


The area of the square is 8 = 64, while that of the rectangle which seems 
to have the same constituent parts is 5 - 13 — 65, and so the area has 
apparently been increased by 1 square unit. The puzzle is easy to ex- 
Plain: the points a, b, c, d do not all lie on the diagonal of the rectangle, 
but instead are the vertices of a parallelogram whose area is of course 
exactly equal to the extra unit of area. 


340 Fibonacci Numbers and Continued Fractions CHAPTER 13 


The foregoing construction can be carried out with any square 
whose sides are equal to a Fibonacci number w,,. When partitioned in 
the manner indicated 


Uy, 


the pieces may be reformed to produce a rectangle having a slot in the 
shape of a slim parallelogram (our figure is somewhat exaggerated): 


ш, 


oet 


102-1 


2-1 


The identity tas-1 tepi 1 = 2 may be interpreted as asserting that 
the area of the rectangle minus the area of the parallelogram is precisely 
equal to the area of the original square. It can be shown that the height 
of the parallelogram—that is, the width of the slot at its widest point— 
is 


1 
Vig wu 


When 14, has a reasonably large value (say, 14, = 144, so that 124,- ; 
= 55), the slot is so narrow as to be almost imperceptible to the eye. 


SECTION 13.2 Certain Identities Involving Fibonacci Numbers 341 


T 


A List of tbe First Fifty Fibonacci Numbers 


ш 1 и 121393 
и. 1 и» 196418 
us 2 Um 317811 
щ 3 и» 514229 
us 5 иу 832040 
и 8 Uy, 1346269 
и, 13 иу "2178309 
Uy 21 иу 3524578 
Uy 34 и 5702887 
thy 55 из 9227465 
ии 89 их 14930352 
и, 144 иу 24157817 
из 233 им 39088169 
иц 377 и» 63245986 
и; 610 ио 102334155 
ик 987 иа 165580141 
и 1597 lis 267914296 
LT 2584 цу 433494437 
и 4181 ths 701408733 
D 6765 ls 1134903170 
D 10946 ик 1836311903 
и. 17711 ис 2971215073 
из 28657 DM 4807526976 
иң 46368 ц 7778724049 
Us 75025 ил 12586269025 


SS 


The next result to be proved is that every positive integer can 
be written as a sum of distinct Fibonacci numbers. For instance, looking 
at the first few positive integers: 


1=4, 5 = и = ut us 
2= № 6 = u, + u = u, + u + и 
= щ 7*utu-utiüutwutu 


4= uu 8 miy = ust uy. 
It will be enough to show by induction on я > 2 that each of the integers 
1, 2, 3, ... , м, — 1 is a sum of numbers from the set 
[n ees ee , 4,—2}, none repeated. Assuming that this holds for n = k, 
choose N with u, — 1 < N < Ик г. Since N— шь; < uu, — и. 
= и,, we infer that the integer N — u,_, is representable as a sum of 


342 Fibonacci Numbers and Continued Fractions CHAPTER 13 


distinct numbers from [14, М»... , “|. Then Nand, in consequence, 
each of the integers 1, 2, 3,. . ., 4, — 1 can be expressed as a sum 
(without repetitions) of numbers from the set (м, ш, . . ., te- » 


и, - ||. This completes the induction step. 
For the reader's convenience, we explicitly record this fact as 


THEOREM 13-4. Every positive integer can be represented as a finite 
sum of Fibonacci numbers, none used more tban once. 


Problems 13.2 


1. Using induction on the positive integer n, establish the formulas 
(a) ш + 2и, + Зи, +... tnu, = (nt Du,4; — Unti + 2; 
(b) : + 2u, + 3и +-+- + пи, = nues 7 tae 
2. (a) Show that the sum of the first n Fibonacci numbers with odd 
indices is given by the formula 


Wy uy + yg i ctucit tu. 
[Hint: Add the equalities ш = 15, ц = и — и, Us 
lig и) 
(b) Show that the sum of the first n Fibonacci numbers with even 
indices is given by the formula. 


Uy + ty boue ec thay = tant 1 1. 
[Hint: Apply part (a) in conjunction with identity (2).] 


(c) Derive the following expression for the alternating sum of the 
first n Fibonacci numbers: 


ts zo Ab PO mS co P1) * А 
И = 1° 
3. From formula (1), deduce that 
Uap =) = Uy + Ир, tag = Une? и, 7? with n= 2. 


4. Use the results of Probiem 3 to obtain the following identities: 
(а) Unti? + Uni? = 2u.ss п2 2 
(b) м, + u,-,* = 2(щ + и, п). п2 2 
5. Establish that the formula 


шеи да,а) иа аЬ 2-03 


holds Гог n = 2 and use this to conclude that consecutive Fibonacci 
numbers are relatively prime. 


SECTION 13.2 Certain Identities Involving Fibonacci Numbers 343 


6. Without resorting to induction, derive the following identities: . 


(a). tna? Án uim usc. nz 
[Hint: Start by squaring both u,-; = и, — u,-, and u,4, = 
и, + usa] 

(b) им — Unt2ln—2 = 2(—1)". n= 3 


[Hint: Put 4,42 = Unt) + Uns Un-2 = и, — и, – у and use 
formula (3).] 


(с) uj uuum CTS nz 
[Hint: Mimic the proof of formula (3).] 
| (d) u? — u,454,-3 = Á(—1)"**. п2 4 
(e) us eie Мина = Unta — 1, nzl 


: [Hint: By part (c), t4, ,u, = и,+: + (—1)"*!, while by for- 
mula (3), 4,4 14,45 = Un+ + (71)"**] 
(F) tant 2Man=1 T Haste = 1. nzl 

7. Represent the integers 50, 75, 100, and 125 as sums of distinct Fi- 
bonacci numbers. 

8. Prove that every positive integer can be written as a sum of distinct 
terms from the sequence th, м, t4, . . . (that is, the Fibonacci se- 
quence with м, deleted). 

9. Establish the identity 


(ust, + 3)? + (QU, tur 2)? = (tan + 5), nzl 


and use this to generate five primitive Pythagorean triples. 

10. Prove that the product 14,4, + 14, + 24, з Of any four consecutive 
Fibonacci numbers is the area of a Pythagorean triangle. (Hint: See 
the previous problem.] 

11. Let a = 4(1 + V5) апав = 21 — V5), so that а and В are both 
roots of the equation x? = x + 1. Show by induction that the Binet 
formula 

| AREA aient 

| DEI 

holds for n = 1. 

12. For n 2 1, show that the product tn- ı tzn Can be expressed as 

А the sum of two squares. [Hint: Problem 6(e).] 

| 13. Prove that if p = 4k + 3 is prime, then p cannot divide a Fibonacci 
number with odd index; that is, p У ton- ı for all n = 1. [Hint: In 
the contrary case, и,2 + и,-12 = than- 750 (mod р). See Problem 
12, Section 5.4.] 


344 


14. 


15. 


16. 


17. 


18. 


Fibonacci Numbers and Continued Fractions CHAPTER 13 


Verify that the product 14,14, + ;25, of three consecutive Fibon- 
acci numbers with even indices is the product of three consecutive 
integers; for instance, шии = 504 = 7.8.9. [Hint: First show 
that 15,15,44 = 1,45 — 1] : 
Use formulas (1) and (2) to show that the sum of any twenty con- 
secutive Fibonacci numbers is divisible by и. 

For n = 4, prove that и, + 1 is not a prime. [Hint: It suffices to 
establish the identities 


Use + 1 = usan, + trys 2); 
Use РТ = шь lr + oe); 
Usna РТ = trys oC toes + uni), 


МАТ = tye Ctra + [PURI 


The Lucas numbersare defined by the same recurrence formula as 
the Fibonacci numbers, 


L,— L,-i t L,-; (nz 3), 


but with Z, — 1 and L, — 3; this gives the sequence 1, 3, 4, 7, 11, 
18, 29, 47, 76, 123, 199, 322, . . . . For the Lucas numbers, derive 
each of the identities below: 

(2) Be Ls. Eg LS Р р 

(by ДАНЕ en oe gS 1 

O Uy ie at OA Б a ИЕСИ "Ub SES oe ay 

(d) Ша = Ley Las + 5(—1)%, 2 = 1, 

(e) 22 + £2 + +... +12 = о ЕТ, 

CLA a its Li Enkin +2) 12 2: 
Establish the following relations between the Fibonacci and Lucas 
numbers: 

(a) Ln = te, шо = u, + 2u,-,, n= 2. [Hint: Argue by 

_ induction on n] 

(b) 1, = Unta И-П 3. 

(c thy = uL, nz. 

(d) L4, L.,—5u, nz 2. 

(e) Ram usd. me > 2. 

(D 2и, = uL, + Lu, mz 1, nz 1. 

(8) вса(и,, L) = 10r2, n= 1. 


SECTION 13.3 Finite Continued Fractions 345 


19. Ifa =; (1 + ү) and 8 = 5 (1 — V5), prove that 
Е. = att Be 


for я = 1; whence 


а" = 310, + Уби,), в" = 1 (L, — үи). 


[Hint: See Problem 11.] 
20. In 1876, Lucas discovered the following formula for the Fibonacci 
numbers in terms of the binomial coefficients: 


e PME nt 
И] 


where jis the largest integer less than or equal to (7 — 1)/2. Derive 
this result. [Hint; Argue by induction, using the relation u, = 
m m-—1i mal 
u,-—, + u,-5; note also that (7) ( k ) iss eis 1 )] 
21. Establish that for я = 1, 


(а) (7) + (2). * (2). Et (2)». = thn; 


n n n ATE 
e (P) + (2) (ин -+ о) и, 
22. Prove that 24 divides the sum of any 24 consecutive Fibonacci num- 


bers. [Hint: Consider the identity 
Un + Ung +... + Ln 
М - (+: 1) + u(y 42 — 1)] 
23. Let n bea positive integer and т = n? — п, Show that Um is di- 
visible by 30290. [Hint: See Problem 1(b) of Section 7.3.) 


13.3 FINITE CONTINUED FRACTIONS 


In that part of the Liber Abaci dealing with the resolution of fractions 
into unit fractions, Fibonacci introduced a kind of “continued fraction.” 


For example, he employed the symbol 111 as an abbreviation for 


345 
1+; 
LE dur x 
3 3-344 4.5 


346 Fibonacci Numbers and Continued Fractions CHAPTER 13 


For example, he employed the symbol iw as an abbreviation for 


4 1 1 1 
— =. 
3 ме Bene 2. iom 
The modern practice is, however, to write continued fractions in a de- 
scending fashion, as with 


2+ 
4+ 


A multiple-decked expression of this type is said to be a finite simple 
continued fraction. To put the matter formally: 


DEFINITION 13-1, By a finite continued fraction is meant a fraction 
of the form 


a + 
а + : 1 
а; + i 
Rho 
1 

abi 

a, 
where æ, @,,. . ., а, are real numbers, all of which except possibly 
@ are positive. The numbers 2, @,. . ., a, are the partial denom- 


inators of this fraction. Such a fraction is called simple if all of the 
4, are integers. 


While giving due credit to Fibonacci, most authorities agree that 
the theory of continued fractions begins with Rafael Bombelli, the last 
of the great algebraists of Renaissance Italy. In his L'Algebra Opera 
(1572), Bombelli attempted to find square roots by means of infinite 


SECTION 13.3 Finite Continued Fractions 347 


- continued fractions—a method both ingenious and novel. He essen- 
tially proved that V13 could be expressed as the continued fraction 


Vi$- 3 — ÉL 
Qiu e 


It may be interesting to mention that Bombelli was the first to popularize 
the work of Diophantus in the Latin West. He set out initially to translate 
the Vatican Library's copy of Diophantus' Arithmetica (probably the same 
manuscript uncovered by Regiomontanus), but, carried away by other 
labors, never finished the project. Instead he took all the problems of 
the first four Books and embodied them in his A/gebra, interspersing 
i them with his own problems. Although Bombelli did not distinguish 
| between the problems, he nonetheless acknowledged that he had bor- 
rowed freely from the Arithmetica. 
Evidently, the value of any finite simple continued fraction will 
always be a rational number. For instance, the continued fraction 


es” вЫ 


=. 
С 


348 Fibonacci Numbers and Continued Fractions CHAPTER 13 


THEOREM 13-5. Any rational number can be written as a finite 
simple continued fraction. 


Proof: Let a/b, where b > 0, be any rational number. Euclid’s al- | 
gorithm for finding the greatest common divisor of а and b gives 
us the equations 


a=bat+n, 0cn-cb 
bna tr, 0< 7, < л 
n = һа + т, 0cncr 
fy-2 183-1 F fu 0m rr, rus 


f,-17 r.a, t 0. 


Notice that since each remainder r, is a positive integer, a, a, 
. , а, are all positive. Rewrite the equations of the algorithm in 
the following manner: 


a/b = a, + n/b = a + Y (b/n), 
b/r, = a, + r//r, = a, + Y(r/rj), 
пъ = а, + rr, а, + V(r/n), 


г. M fy = an. 
If we eliminate b/r, from the first of these equations, then 


ajb = a, + 1/(b/r,) = m +—— 


“* Gin 


In this result, substitute the value of r,/r, as given by the third 
equation: 


a/b = а + 


1 
1' 
A Teen: 


by finishing the proof. 


To illustrate the procedure involved in the proof of Theorem 
-5, let us represent 19/51 as a continued fraction. An application of 
iclid's algorithm to the integers 19 and 51 gives the equations 


51=2. 19 + 13 ог 51/19 =2+ 13/19, 
19=1. 13 +6 ог 19/13 = 1 + 6/13, 
13=2.6+1 ог. 13/6 = 2 + 1/6, 
6=6-1+0 ог 6/681; 


jo 


EU ani: Nd M 
531 (61/9 2+8 


is the continued fraction expansion for 19/51. 


350 Fibonacci Numbers and Continued Fractions CHAPTER 13 


ў Since continued fractions are unwieldy to print or write, we adopt 
the convention of denoting a continued fraction by a symbol which dis- 


plays its partial quotients; say, by the symbol [4; 4, . . . , а,). In this 
notation, the expansion for 19/51 is indicated by 
[0; 2, 1, 2, 6] 
and for 172/51 = 3 + 19/51 by 
[3; 2, 1, 2, 6]. 
The initial integer in the symbol [G5 &,. . ., @,] will be zero when the 


value of the fraction is positive but less than one. 

The representation of a rational number as a finite simple con- 
tinued fraction is not unique: once the representation has been ob- 
tained, we can always modify the last term. For, if а, > 1,then 


4,7 (a,~1) +1=(a,-) +4, 


' where а, — 1 is a positive integer, hence 
[05 4». а] = [o Gy ..,2,— 1,1]. 
On the other hand, if 2, = 1, then 


1 1 
a ie a toc em ay od, 


so that 


[405 5. а, а] = [а а,... И d]. 


Every rational number has two representations as a simple continued 
fraction, one with an even number of partial denominators and one with 


an odd number (it turns out that these are the only two representations). 
In the case of 19/51, 


19/51 = (0; 2, 1, 2, 6} = (0; 2, 1, 2, 5, 1]. 


SECTION 13.3 Finite Continued Fractions 351 


Example 13-1 
We go back to the Fibonacci sequence and consider the quotient 
of two successive Fibonacci numbers (that is, the rational number 
u,4,/u,) written as a simple continued fraction. As pointed out 
earlier, the Euclidean Algorithm for the greatest common divisor 
of u,,and и, +, produces the я — 1 equations 


UB) ш usus, 


i." I Инт hay 


u = 1. u t и, 
и = 2 и, +0: 


Since the quotients generated by the algorithm become the partial 
denominators of the continued fraction, we may write 


ина, = [15 1, 1,5. 12] 


But м, +, /м„ is also represented by a continued fraction having one 
more partial denominator than does [1; 1, 1,. . ., 1, 2]; namely, 


line 1/4, = [GAA se 5. 3, 151 


where the integer 1 appears m + 1 times. Thus, the fraction 
u,,+,/u, has a continued fraction expansion which is very easy to 
describe: there are n partial denominators all equal to 1. 


As а final item on this part of our program, we would like to in- 
dicate how the theory of continued fractions can be applied to the so- 
lution of linear Diophantine equations. This requires knowing a few 
pertinent facts about the “convergents” of a continued fraction, so let 
us begin proving them here. 


DEFINITION 13-2. The continued fraction made from [a 
а,..., @,] by cutting off the expansion after the kth partial de- 
nominator а, is called the kth convergent of the given continued 
fraction and denoted by C,; in symbols, 


С, = [Gos а»... A), (1=2= л). 


We let the zero'th convergent G be equal to the number æ. 


352 Fibonacci Numbers and Continued Fractions CHAPTER 13 


A point worth calling attention to is that for k < n if a, is re- 
placed by the value а, + 1/а,+ ,, then the convergent C, becomes the 
convergent С, + ,; 


[405 45... - s d. + 12,4 i] 
= [4 s... + Fe 1) Ars 0, i] = Сич. 


It hardly needs remarking that the last convergent C, always equals the 
rational number represented by the original continued fraction. 

Going back to our example 19/51 — [0; 2, 1, 2, 6], the successive 
convergents are 


©, = 0, 
а = [;2]=0++= 1 


2, 


1 
ит 
1 


1 


0 

P 
Desde 
1+5 


G = [0; 2, 1, 2, 6] = 19/51. 


Except for the last convergent G, these are alternately less than or greater 


than 19/51, each convergent being closer to 19/51 than the previous 
one, 


G = (0; 2,1, 2} = 0+ 


Much of the labor in calculating the convergents of a continued 
fraction [4; a, .. . › ал} can be avoided by establishing formulas for 
their numerators and denominators. To this end, let us define numbers 
band 4, (k= 0,1,.. .,n) as follows: 

р = а, 471 

р = аа +1 а= а 

Р. = Ap, p,- 2 4 = 44. - EQ- 
fork = 2,3,.. „м. 


TON 13.3 Finite Continued Fractions | ^ 353. i 


A direct computation shows iind (8 fee few costes of 


а,..., а] are 
Gan eB 
% 
ait em mam Due 
а а а 
1 alam +1) + а, af 
С d 
т Е аа, +1 4 
а, 


ссеѕѕ hinges on being able to show that this relationship continues 
! hold. This is the content of 


"THEOREM 13-6. The kth convergent of the simple continued frac- 
“tion [as a, . . ., Gy] bas the value 

€, = Рь/Чь (0=#=». 
"Proof: The remarks above indicate that the theorem is true for 


x 0, 1,2. Let us assume that it is true for # = m, where 2 € m 
Um that is, for this m, 


(Ө) Ca = р. = = rbn- t Pm = 2 


ndm = 1 + Fm = 2 
Note that the integers p, 1, gm- v Pm-2 Ят 2 depend on the first 
: n-— 1 partial denominators а, 45 . . ., Am- hence are inde- 


pendent of a„. Thus formula (*) remains valid if a, is replaced iif 
the value a, + 1/2,41: 


T 


МЇ > 1 ] 
АОК" vir AG p 
[as a Am — ir Am а 
Y 4 Lg) 
(an+ Jantan 
Gm +3 


1 
=) Gm=1 + dua 


354 Fibonacci Numbers and Continued Fractions CHAPTER 13 


As we have explained earlier, the effect of this substitution is to 
change C, into the convergent C, , ;, so that 


1 
(an+) otn 


Cn +1 = 


(2. + Juss e s 


$ а» +1 
= 2» (ар, Da - 2) * Dui 
Gm + 6m Fm = + Gm -3 + du-i 
= @т+ Din + Pu-i 
Чт + 14m + 9-1 


But this is precisely the form the theorem should take in the case 
k= т + 1. So, by induction, the stated result holds. 


Let us see how this works in a specific instance. In our example 
19/51 = (0; 2, 1, 2, 6]: 


р =0 and Ф — 1, 
P=0-2+1=1 £053. 
р=1.1+0=1 @=1-2+1=3, 
р=2.1+1=3 &%=2-3+2= 8, 
р=б.3+1= 19 4 =6-8+3 = 51. 


This says that the convergents of [0; 2, 1, 2, 6] are 
Q = p/h = 0, С, = р/4 = 1/2, С, = p/4, = 1/3, 
G = b/4, = 3/8, C, = p/q = 19/51, 


as we know that they should be. 


We continue our development of the properties of convergents 
by proving 


THEOREM 13-7. If C, = p, /q, is the kth convergent of the simple 
continued fraction [as а,..., а,), then 


РьЧь- 1 — qu -17 (—1)*- 1, 1=#= п. 


Proof: Induction on k works quite simply, with the relation 


Pid 4% = (аа +1) 1-а - @ =1=(-1)'-), 


SECTION 13.3 Finite Continued Fractions 355 


disposing of the case k = 1. We assume that the formula in ques- 
tion is also true for k = m, where 1 = m < n. Then 
Prt 19m — Yn Pm = (m+ Pm + Pm = i) dn 
SHE idu CU UR ЗОРУ 
= (nm -1— >В - 1) 
Ир enm )r 


and so the formula holds for т + 1, whenever it holds for т. It 
follows by induction that it is valid for all & with 1 = # = n. 


A notable consequence of this result is that the numerator and 
denominator of any convergent are relatively prime, so that the conver- 
gents are always given in lowest terms. 


COROLLARY. Forl = k = n, p, and q, are relatively prime. 


Proof: И d = gcd(p, , 4»), then from the theorem, d| (—1)*-'; since 
d > 0, this forces us to conclude that d = 1. 


Example 13-2 
Consider the continued fraction (0; 1, 1, . . ., 1] in which the par- 
tial denominators are all equal to 1. Here, the first few convergents 
are 


6,7 0/1, 6, = 1/1, C, — 2/1, 6, = 3/2, Cy 5/3) 
Since the numerator of the kth convergent C, is 
a Bim Peni + Pria = Рь-1 t Pe-2 
and the denominator is 
Ge = 1+ 4-1 4-27 44-1 + 4-2 
it is apparent that 
C, = Unt И (k= 2), 


where u, denotes the kth Fibonacci number. In the present con- 
text, the identity р... — GePe-1 = (—1)*- ' of Theorem 13-7 
assumes the form 


А m o 


this is precisely formula (3) on page 294. 


_ 356 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Let us now turn to the linear Diophantine equation 
ax + by- с, 


where a, b, care given integers. Since no solution of this equation exists 
if d Y c, where d = gcd(a , b), there is no harm in assuming that d| с. 
In fact, we need only concern ourselves with the situation in which the 
coefficients are relatively prime. For if gcd(a, b) = d> 1, then the equa- 
tion may be divided by d to produce 


(a/d)x + (b/d)y = c/d. 


Both equations have the same solutions and, in the latter case, we know 
that gcd(a/d , b/d) = 1. 
Observe too that a solution of the equation 


ax + by c, gcd(a, b) =1 
may be obtained by first solving the Diophantine equation 
ах + by=1, gcd(a, b) = 1. 


Indeed, if integers x, and y, can be found for which ax, + by, = 1, then 
multiplication of both sides by c gives 


а(сҳ) + Кс») = c. 


Hence, x = cx, and y = cy, is the desired solution of ах + by — c. 

To secure a pair of integers x and: y satisfying the equation 
ах t by = 1, expand the rational number a/b as a simple continued 
fraction; say, 


a/b = [45 à. . . , a). 
Now the last two convergents of this continued fraction are 
€, -1 = р, - 1/4, - лапа C, = p,/q, = a/b. 
Since gcd(p,, q,) = 1 = gcd(a, b), it may be concluded that 
b. а and 4, = b. 
By virtue of Theorem 13-7, ме have 
Р, 23 T dp, =) = (-10)"-1 
or, with a change of notation, 


4d, -,— Opp —, = (—1)"-1 


SECTION 13.3 Finite Continued Fractions 357 


Thus, with x = q,-, and y = —p,-,, we have 

ах t iby = (SIRF. 
If n is odd, the equation ax + by = 1 has the particular solution 
X = 4.190  —D.-n while if n is an even integer, then a solution is 
given by x, = —@,-1) Jo =Pn-1- Our earlier theory tells us that the 
general solution is 


x= x + bt y= уа, (t0, £1, +2,...), 
Example 13-3 
Let us solve the linear Diophantine equation 
172x + 20y = 1000 


by means of simple continued fractions. Since ged(172 , 20) = 4, 
this equation may be replaced by the equation 


43x + Sy = 250. 
The first step is to find a particular solution to 
43х + 5у = 1. 


To accomplish this, we begin by writing 43/5 (or if one prefers, 
5/43) as a simple continued fraction. The sequence of equalities 
obtained by applying the Euclidean Algorithm to the numbers 43 


and 5 is 
43= 8.5 +3, 
и Кад 
3=1-2+1, 
2-251, 


so that 43/5 = [8; 1, 1, 2] = 8 + Е У The convergents of 


this continued fraction are 
C, = 8/1, С, = 9/1, G = 17/2, G = 43/5, 


from which it follows that p; = 17, @ = 2, p, = 43 and ф = 5. 
Falling back on Theorem 13-7 again, 


р Фр = (1)? =", 


358 Fibonacci Numbers and Continued Fractions CHAPTER 13 


or in equivalent terms, 
48:20 95:107 29]. 
When this relation is multiplied by 250, we obtain 
43 - 500 + 5(—4250) = 250. 


Thus a particular solution of the Diophantine equation 43x + 5y 
= 250 is 


X = 500, у = — 4250. 
The general solution is given by the equations 
x= 500 + 55 y = —4250 — 434 (t= 0, +1, +2,...). 


Before proving a theorem concerning the behavior of the odd 
and even numbered convergents of a simple continued fraction, a pre- 
liminary lemma is required. 


LEMMA. Jf q, is the denominator of the kth convergent C, of the simple 
continued fraction [а; а,..., а,), then q,-, = q, forl k 
< n, with strict inequality when k > 1. 


Proof: We establish the lemma by induction. In the first place, 
4% = 1 S a = q, so that the asserted equality holds when k = 1. 
Assume, then, that it is true for k = m, where 1 < т < n. Then 


Im + 1 = Gm eid, + Im = > а, +18. = 1+ Im = d 


so that the inequality is also true for k = m + 1. 
With this information available, it is an easy matter to prove 


THEOREM 13-8 
(1) The convergents with even subscripts form a strictly in- 
creasing sequence; that is, 


ааа 


(2) The convergents with odd subscripts form a strictly decreasing 
sequence; that is, 


Qo G> Gr: 


b SECTION 13.3 Finite Conti d Fr E ti зем touted! T 359 


(3) Every convergent with an odd subscript ts greater than every 
convergent with an even subscript. 


Proof: With the aid of Theorem 13-7, we find that 
Crea ~ Ce = (Ganz = Go) (+: О) 
ES (ры: вы) + (2 ~ 2) 
Qa Uti 4+1 Q 
- * —1)* 
УК е da + GY 
Че + 24+: de ide 
ey (SD Mah 1i а) 
4.9: + 19 + 2 
Recalling that q, > 0 for all i= 0 and that q,+2— qs > 0 by the 
lemma, it is evident that С,+ ‚ — C, has the same algebraic sign as 
does (—1)*. Thus, if & is an even integer, say k = 2j, then С, + 2 
> Cy; whence 


<<<... 
Similarly, if k is an odd integer, say k = 2/ — 1, then Gy+ı < 
Ca- ; whence 

Co Git E ess 
It remains only to show that any odd-numbered convergent C,- 1 
is greater than any even-numbered convergent Cı Since Prg- 1 
= qaba- = (—1)*7', upon dividing both sides of the equation by 
4.4, - ;, We obtain 
sibi: Peni (et ie 

4-1 4:4 - i 

This means that С», < С, ,. The effect of tying the various ine- 
qualities together is that 


С, 62-2; 


Cae X Crt ar X Qstar = £ Gres 
as desired. j 
W To take an actual example, consider the continued fraction ) 
С [2;3, 2,5, 2, 4, 2]. A little calculation gives the convergents 
Q = 2/1, G = 7/3, G = 16/7, G = 87/38, 
С, = 190/83, C, = 847/370, Cs = 1884/823. 


360 Fibonacci Numbers and Continued Fractions CHAPTER 13 


According to Theorem 13-8, these convergents satisfy the chain of ine- 
qualities 


2 < 16/7 < 190/83 < 1884/823 < 847/370 < 87/38 < 7/3. 


This is readily visible when the numbers are expressed in decimal no- 
tation: 


2 < 2.28571 --- < 228915 ... < 2.28918 ... 
< 2.28947 ... < 2.33333 --- 


PROBLEMS 13.3 


1. Express each of the rational numbers below as finite simple con- 
tinued fractions: 
(а) —19/51 (b) 187/57 (с) 71/55 (4) 118/303 
2. Determine the rational numbers represented by the following 
' simple continued fractions: 
(а) [—2; 2, 4,6,8] (b) [4 2, 1,3, 1, 2, 4] 
(с) {0; 1, 2, 3, 4, 3, 2, 1] 
3. If r= [45 а, 4, . . .,a,], where r 1, show that 
1/r = [0; 4, а, ...,а,]. 
4. Represent the following simple continued fractions in an equiva- 
lent form, but with an odd number of partial denominators: 
(а) (0; 3,1, 2,3] (b) (52,1,6, 1} (©) (2; 3,1, 2, 1, 1, 1] 
5. Compute the convergents of the following simple continued frac- 
tions: 
(а) [1;2,3,3,2,1] (b) [-3:1, 1,1, 1,3]. (©) [0;2,4, 1, 8, 2] 
6. (a) If C, = рь/4ь is the kth convergent of the simple continued 
fraction [1; 2, 3, 4,. . .,, n + 1], show that 
рн = np,-,t np, -2 + (n— 1) р, 5 
+... + 3p, + 2p + (BH + 1). 
(Hint: Add the relations p, = 1, p, = 3, p, = (k + 1)p,-i 
+ Pr-2fork=2,...,n] 
(b) Illustrate part (a) by calculating the numerator p, for the frac- 
tion [1; 2, 3, 4, 5]. 


SECTION 13.3 Finite Continued Fractions 361 


7. 


10. 


11. 


12. 


Evaluate рь, qe, and C, (k = 0,1,. . . ,8) forthe simple continued 
fractions below; notice that the convergents provide an approxi- 
mation to the irrational numbers in parentheses: 

(а) 1; 2, 2, 2, 2, 2, 2, 2,2] (V2) 

(b) [1; 1,2, 1, 2, 1, 2, 1, 2] (V3) 

(c) (2; 4,4, 4, 4, 4, 4, 4, 4] (V5) 

(d) (2:2, 4, 2, 4, 2, 4, 2, 4] (V6) 

(е) (2; 1,1, 1,4, 1, 1, 1,4] CV) 


. If C, = p,/q,is the kth convergent of the simple continued fraction 


[40; а, . . . ‚а, establish that 
dios aeg TV (2=2= п). 

[Hint: Observe that 4, = а,4,-1 + 4-2 = 24,- 2] 
Find the simple continued fraction representation of 3.1416, and 
that of 3.14159. 3 
If C, = p,/q,is the kth convergent of the simple continued fraction 
[@; 4, > - ,а,] and a, > 0, show that 

Dy /Dy - = [авы 4 - 0 e Ay A) 
and 

Чь /Чь 21 = [Bei 4a - s 58,1]. 
[Hint: In the first case, notice that 

Pal De- = а, + -ilb.- 0) 


1 
= a,+——— |. 
if (gis 


By means of continued fractions determine the general solutions 
of each of the following Diophantine equations: 

(а) 19x + 51у = 1; (b) 364x + 227y = 1; 

(c) 18x + 5y = 24; (d) 158x — 57y = 1. 

Verify Theorem 13-8 for ‘the simple continued fraction 
[1; 1,1, 1,1, 1, 1, 1]. 


362 Fibonacci Numbers and Continued Fractions CHAPTER 13 


13.4 INFINITE CONTINUED FRACTIONS 


Up to the point, only finite continued fractions have been considered; 
and these, when simple, represent rational numbers. One of the main 
uses of the theory of continued fractions is finding approximate values 
of irrational numbers. For this, the notion of an infinite continued frac- 
tion is necessary. 

If a, а, &, . . . is an infinite sequence of integers, all positive 
except perhaps for a then the expression 


denoted more simply by [4 а, а, . . . ], is called an infinite simple 
continued fraction. In order to attach a mathematical meaning to this 
expression, observe that each of the finite continued fractions 


€, = [d d), 45... . а) (nz 0) 


is defined. It seems reasonable therefore to define the value of the in- 
finite continued fraction [45 2, @,. . .]to be the limit of the sequence 
of rational numbers C,, provided of course that this limit exists. In some- 
thing of an abuse of notation, we shall use [4,; а, а, . . . ] to indicate 
not only the infinite continued fraction, but also its value. 

The question of the existence of the above limit is easily settled. 
For, under our hypothesis, the limit not only exists but is always an ir- 
rational number. To see this, observe that formulas previously obtained 
for finite continued fractions remain valid for infinite continued frac- 
tions, since the derivation of these relations did not depend on the fi- 
niteness of the fraction. When the upper limits on the indices are 
removed, Theorem 13-8 tells us that the convergents C, of 
[@; а, a, . . .] satisfy the infinite chain of inequalities. 


босса ас. 


Since the even-numbered convergents C,, form а monotonically in- 
creasing sequence, bounded above by C,, they will converge to a limit 


SECTION 13.4 Infinite Continued Fractions 363 


a which is greater than each C,,,. Similarly, the monotonically decreasing 
sequence of odd-numbered convergents C,,,+, is bounded below by C, 
and so has a limit a’ which is less than each C,,,4,. Let us show that these 
limits are equal. On the basis of the relation р», + ‚Ф, — Ф, + 1 Pan 
= (—1)?" we see that 


_ Pints Dun 1 


ата X Cray Ск , 
Qni Фп udi 


whence, 
1 
0 =|а' а ly oae 
Yn Fant 1 din 


Since the q, increase without bound as i becomes large, the right-hand 
side of this inequality can be made arbitrarily small. If a' and а were not 
the same, then a contradiction would result (more precisely, 
1/q3, could be made less than the value of | a’ — а |). Thus, the two 
sequences of odd- and even-numbered convergents have the same lim- 
iting value a, which means that the sequence of convergents C, has the 
limit a. 

Taking our cue from these remarks, we make the following def- 
inition: 


DEFINITION 13-3. If 4, а, @, . . . is an infinite sequence of inte- 
gers, all positive except possibly æ, then the infinite simple con- 
tinued fraction (a; A, а, . . .] has the value 


lim, — œ [45 4 4 - . 8) 


It should be emphasized again that the adjective "simple" in- 
dicates that the partial denominators a, are all integers; since the only 
infinite continued fractions to be considered are simple, we shall often 
omit the term in what follows and call them infinite continued fractions. 

‘Perhaps the most elementary example is afforded by the infinite 
continued fraction [1; 1, 1, 1,. . . ]. Example 13-1 showed that the nth 
convergent C, = (1; 1, 1, . . . ,1], where the integer 1 appears п + 1 
times, is equal to 


oe (n= 0), 
и, 


364 Fibonacci Numbers and Continued Fractions CHAPTER 13 


a quotient of successive Fibonacci numbers. If x denotes the value of 


the continued fraction [1; 1, 1, 1,. . .], then 
Un у Ua 08 
x= lim G= lim “t= jim “> 
п n=O и, "о и, 
1 1 1 
= lim 14 =1+—— = 1+— 
dined Un ; Uy 
lim (+) 
и, - 1 PTE Аи, - 1 


-This gives rise to the quadratic equation x'— x — 1 = 0, whose only 
positive root is x = (1 +’ /5)/2. Hence, 


LO nins AN 


There is one situation which occurs often enough to merit spe- 

cial terminology. If an infinite continued fraction, such as [3; 1, 2, 1, 6, 

1,2,1,6,. . ], contains a block of partial denominators b,, b, . . .,5, 

which repeats indefinitely, the fraction is called periodic. The custom is 

to write a periodic continued fraction [4; 4,, . . „am, b, . . . Pw В, 
„Въ... ] more compactly as 


[G5 4, а, Dii д) 


where the bar over 6, b, . . . ,b, indicates that this block of integers 
repeats over and over. If b, b, . . .,5, is the smallest block of integers 
which constantly repeats, we say that b, bj, . . ., b, is the period of the 
expansion and that the /engtb of the period is n. Thus, for example, 
[3; 1, 2, 1, 6] would denote (3; 1, 2,1, 6, 1, 2, 1, 6,... ], a continued 
fraction whose period 1, 2, 1, 6 has length 4. 

We saw earlier that every finite continued fraction is represented 
by a rational number. Let us now consider the value of an infinite con- 
tinued fraction, 


THEOREM 13-9, The value of any infinite continued fraction is an 
irrational number. 


Proof: Suppose that x denotes the value of the infinite continued 
fraction [45 2,, 2, . . . }; that is, x is the limit of the sequence of 
convergents 


C, = [454,4 ..., a] = 2. 


SECTION 13.4 Infinite Continued Fractions 365 


Since x lies strictly between the successive convergents C, and 
C,4,, we have 


1 


Diti Pa 
4,4, +1. 


4+1 ds 


0<1х- GI<IG4,-Gl= 


With the view to obtaining a contradiction, assume that x is a ra- 
tional number; say, x = a/b, where aand b > 0 are integers. Then 


1 
4,9» + 1 


а 
Ще 2 
E 


and so, upon multiplication by the positive number bgn, 


b 
OS Legacy 0.15: & 


nth 


We recall that the q, increase without bound as / increases. If n is 
chosen so large that b< 4, + 1, the result is 4 


0<1 aq, — bp, < 1. 


This says that there is a positive integer, namely | aq, — bpn |, be- 
tween 0 and 1—an obvious impossibility. 


We now ask whether two different infinite continued fractions 
can represent the same irrational number. Before giving the pertinent 
result, let us observe that the properties of limits allow us to write an 


infinite continued fraction [4 a, 4, . . .] as 
[5 а, 4 . ..] = lim, [а а, . . ., Gn 
И 
A [а; а, .. 5 Gn 
EE — 
„Ит [e 4s . . .. а] 
aA popups ий Бако < 
i [25 2, а, . . .] 


Our theorem is stated as: 


THEOREM 13-10. If the infinite continued fractions|a; a,, а. . .] 
and [b b, b, . . .] are equal, then a, = b, for all n 2 0. 


366 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Proof. И x = [45 а, а,,...], then С, < x € С, which is the same 
as saying that a, < x < a, + 1/a,. Knowing that а, = 1, this pro- 
duces the inequality a < x < а, + 1. Hence, [x] = æ, where [x] 
is the traditional notation for the greatest integer or “bracket” func- 
tion (page 145). | 

Now assume that [4; 4, 42, . . .] = x = [b b, 5s. . .] 
ог, to put it in a different form, | 

1 1 
si Town SEN] z Pit TATE, NE 

By virtue of the conclusion of the first paragraph, we have @ = [x] 
= b, from which it may then be deduced that (a; an .. .] 
= (b,; 5, . . .]. When the reasoning is repeated, we next conclude 
that a, = b, and that [а; а,...] = [b; 5, . . . ]. The process 
continues by mathematical induction, thereby giving а, = b, for 
all n z 0. 


‘COROLLARY. Two distinct infinite continued fractions represent two 
distinct irrational numbers. 


Example 13-4 
To determine the unique irrational number represented by the in- 
finite continued fraction x = [3; 6, 1,4], let us write x = (3; 6, y], 
where + 


» 7 (553) - 0:4 y) 


Then 
1 y 5yt1 
-]4————z —_ = L—— 
НЕ, RY DAE LT dy P 


which leads to the quadratic equation 

$y—4y—1-70. 
Inasmuch as y > 0 and this equation has only one positive root, 
we may infer that 


1+ V2 
Jor" 2*1 


— B 


SECTION 13.4 Infinite Continued Fractions 367 


From x = [3; 6, у], we then find that 


got Is 
а ET 1 8-4 6V2 
1+ và 
2 


= (25 + 19ү2)(8 – 6V2) _ 14 - VZ 
(в + 6V2)(8 — 6y2) a x 


that is, [3; 6, 1, 4] = н-м. 


Our preceding theorem shows that every infinite continued frac- 
tion represents a unique irrational number. Turning matters around, we 
next establish that any irrational number x, can be expanded into an 
infinite continued fraction [25 а, @,. . .] which converges to the value 
№. The sequence of integers a, a, а,,. . . is defined as follows: using 
the bracket function we first let 


1 1 
"ыы" 
and then take 

4 = [x] а, = [x], & = [x] @ = [№], +. 


In general, the a, are given inductively by 


а, = [м], Mee = hz 0. 


ву’ 


It is evident that x, , is irrational, whenever x, is irrational; and because 
we are confining ourselves to the case in which x, is an irrational number, 
all x, are irrational by induction. Thus, 


О, — a, = x [5] <1 
and we see that 


Xrti >1 


X,— а, 


So that the integer 4,4, = [х,+,] = 1 for all > 0. This process therefore 
leads to an infinite sequence of integers a, 4, a». . ., all positive except 
perhaps for a. 


368 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Employing our inductive definition in the form 


1 


Xeta 


х, = а, + (k= 0) 


we obtain through successive substitution 


1 
= а + — 
x 
1 
at 1 
aub 
х 
А а — 
а + 1 
ditis 
x, 
= [45 а, а... A Xy 1] 


for every positive integer n. This makes one suspect—and it is our 
task to show—that x, is the value of the infinite continued fraction 
[4; а, а». . s] 

For any fixed я, the first n + 1 convergents C, = p,/q,, p =k 
= n of(a; а, 4, . . .] are the same as the first n + 1 convergents of 
the finite continued fraction [25 4, аз... а» X, |]. IF we denote the 
(n + 2)th convergent of the latter by С, + 1, then the argument used 
in the proof of Theorem 13-6 to obtain C, + | from C, by replacing а, by 
4, + 1/4,4, works equally well in the present setting; this enables us 
to obtain С, + 1 from C, by replacing a, 4, Бух, +1: 


Aum [ad Е 
= nt Pn + Pn = 
Kat an + dnas 
Because of this, 
= Харь + Pn-1 _ Pn 
Xn +14, da - à Qn 


= СО. Gn = 1 = dps) (Ct 
(n+ ids + Gn - а» (x, «ids + Gn - d. 


х С, 


SECTION 13.4 Infinite Continued Fractions 369 


where the last equality relies on Theorem 13-7. Now X,4., > 4,4, and 
so 
НИ Soc» Sava ncn ing 

(Xn e idu + n= Gn (Bn Gn + Gn- ds — dn ids 


Ix, — Cal 
Since the integers q, are increasing, the implication is that 
х= lim C, = [Ai а, à» . . .] 
Let us sum up our conclusions in 


THEOREM 13-11, Every irrational number bas a unique represen: 
tation as an infinite continued fraction, tbe representation being 
obtained from the continued fraction algorithm described above. 


Incidentally, our argument reveals a fact worth recording sepa- 
rately. 


COROLLARY. If p,,/q, is the nth convergent to the irrational number 
x, then ^ 
1 1 
Coe 
que In 4" 


We give two examples in illustration of the use of the continued 
fraction algorithm in finding the representation of a given irrational 
number as an infinite continued fraction. 


Example 13-5 
For our first example, consider x = \/23 == 4.8, The successive ir- 
rational numbers x, (and therefore the integers a, — [x,]) can be 
computed rather easily, with the calculations exhibited below: 


№ = ү23 = 4 + (ү23 — а), а, = 4, 
wach 
n- Pal. 0237 4 7 7 
ж аад аід и 2843-34828. а = 3, 
Е 2 i 2 
1 2 V3 +3 V23 — 4 
= LV —-it ip eit 
Пра 3-3 7 7 и 


1 7 
P AS SOA Е TR ae +4=8+ (23-4), а = 
d ERU UM ae v23 (№23 — 4), а, = 8. 


370 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Since x, = м, also № = №, х = X, X, = x; then we get x, = х; 
= x, and so on, which means that the block of integers 1, 3, 1, 8 
repeats indefinitely. We find that the continued fraction expansion 
of \/23 is periodic with the form 


V23 = (4; 1,3, 1,8, 1,3, 1,8, . . .] = (4; 1,3, 1,8]. 


Example 13-6 
To furnish a second illustration, let us obtain several of the con- 
vergents of the continued fraction of the number 


x = 3141592653 ..., 


defined by the ancient Greeks as the ratio of the circumference of 
a circle to its diameter. The letter т, from the Greek word peri- 
metros, was never employed in antiquity for this ratio; it was Euler's 
adoption of the symbol in his many popular textbooks that made 
it widely known and used. 

By straightforward calculations, one sees that 


РЕ т а= 3, 
Ет queue clc ann. аат, 
аашаа 15.99659440. . . , a, = 15, 

е" сарду — - 190173. ль 


1 1 
№ — [№] 000341723... 


= 292.63724..., a = 292, 


Thus, the infinite continued fraction for x starts out as 
г = В: 715,1, 292, 1.30) 


but, unlike the case of \/23 in which all the partial denominators а, аге 
explicitly known, there is no pattern which gives the complete sequence 
of a,. The first five convergents are 


1'7'106'113' 33102 ` 


fadum о a m 


SECTION 13.4 Infinite Continued Fractions 371 


As a check on the Corollary to Theorem 3-11, notice that we 
should have 


Now 314/100 < т < 22/7 and therefore 
|а 


100 7.50 72’ 


as expected. 

Unless the irrational number xassumes some very special form, 
it may be impossible to give the complete continued fraction expansion 
of x. One can prove, for instance, that the expansion for x becomes ul- 
timately periodic if and only if xis an irrational root of a quadratic equa- 
tion with integral coefficients; that is, if x takes the form r + зүй, where 
rand s * 0 are rational numbers and dis a positive integer which is not 
a perfect square. But among other irrational numbers, there are very few 
whose representations seem to exhibit any regularity. An exception is 
another positive constant which has occupied the attention of mathe- 
matic'Ans for many centuries, namely 


e = 2718281828. .., 
the base of the system of natural logarithms. In 1737, Euler showed that 


ee 
T 


= [0; 2, 6, 10, 14,18,...} 


where the partial denominators form an arithmetic progression, and that, 


$21. 015,579 

d [0; 1,3, ел) 

The continued fraction representation of e itself (also found by Euler) 
is a bit more complicated, yet still has a pattern: 


e= [2;1,2,1,1,4,1,1,6,1,1,8,...], 


t 
with the even integers subsequently occurring in order and separated 
by two 1's. With regard to the symbol е, its use is also original with Euier 
and it appeared in print for the first time in one of his textbooks. 


372 Fibonacci Numbers and Continued Fractions CHAPTER 13 


In the introduction to analysis, it is usually demonstrated that e 
can be defined by the infinite series 
1 1 


1 1 
em ltt tah 


xa ate 


If the reader is willing to accept this fact, then Euler's proof of the ir- 
rationality of e can be given very quickly: Suppose io the contrary that 
eis rational, say e = a/b, where a and bare positive integers. Then for 
n> band also n > 1, the number 


is a positive integer. When e is replaced by its series expansion, this be- 
comes 


1 1 1 
MIU qb (nhanh) cda 3 iss 


1 1 1 » 
SIT Gt DG Aas Dats) + BE. 


1 1 1 1 1 
+ — — ———— — ———— wae 
n+1 (== a) + (695 =) + 


E 


n+1 pes 
Since the inequality 0 < N < 1 is impossible for an integer, e must be 
irrational. The exact nature of the number = offers greater difficulties; 
J.H. Lambert (1728-1777), in 1761, communicated to the Berlin 
Academy an essentially rigorous proof of the irrationality of =. 

Given an irrational number x, a natural question is to ask how 
closely, or with what degree of accuracy, it can be approximated by ra- 
tional numbers. One way of approaching the problem is to consider all 
rational numbers with a fixed denominator b > 0. Since x lies between 
two such rational numbers, say c/a < x < (c + 1)/b, it follows that 


с 1 
|» Ет 


1 
| 


SECTION 13.4 Infinite Continued Fractions 373 


Better yet, we can write 
а 1 
НЯ 
|= b | 2b 


where a = c or = с + 1, whichever choice may be appropriate. The 
continued fraction process permitted us to prove a result which consid- 
erably strengthens the last-written inequality, namely: given any irra- 
tional number x, there exist infinitely many rational numbers a/b in 
lowest terms which satisfy 


а 1 
| ers 


In fact, by the corollary to Theorem 13-11, any of the convergents 
р,/4, of the continued fraction expansion of x can play the role of the 
rational number a/b. The forthcoming theorem asserts that the conver- 
gents p, /q, have the property of being the best approximations, in the 
sense of giving the closest approximation to x among all rational num- 
bers a/b with denominators 4, or less. 

For clarity, the technical core of the theorem is placed in the 


following lemma. 


LEMMA. Let p,/q, be the nth convergent of tbe continued fraction 
representing tbe irrational number x. If a and b are integers, witb 
1S b-«q,., then 


1а„х — Ppl S| bx — al. 


Proof: Consider the system of equations 
Р.а + р, + В = a, 
аю + 4, «iB = b. 


The determinant of the coefficients being Paga +: — QnPn + 1 
= (—1)"*!, the system has the unique integral solution 


а = (—1)" + (aq, +: — + D 
В = (71) + (bp, — agn). 


374 Fibonacci Numbers and Continued Fractions CHAPTER 13 


It is well to notice that a % 0. In fact, а = 0 yields aq, + | | 
= bp, + , and, because вса(р, +, , 4n+1) = 1, this means that 

d, «1l b or b = 4, + ,, contrary to hypothesis. In the event that | 
В = 0, the inequality stated in the lemma is clearly true. For | 
В = 0 leads to a = риа, b = 4, and, as a result, І 


[6х — al=lal 1а,х — po zm qux — pul. | 

Thus, there is no harm in assuming hereafter that В # 0. i 

When В # 0, we argue that а and В must have Opposite ! 

signs. If 8 — 0, then the equation q,a = b — 4, В indicates that ] 

4,9 > 0 and, in turn, а > 0. On the other hand if 6 > 0, then ] 

b < 4, +, implies that b < fi, + , and therefore aq, = b — Gn+18 l 
< 0; this makes a < 0. We also infer that, because xstands between 

the consecutive convergents p, /q, and p, +, /4,+ | 

4х — р, and q,4,X — р, +) ; 


will have opposite signs. The point of this reasoning is that the | 
numbers 


а(4,х-— p,) and B + 1% — р, +1) 3 


must have the same sign; in consequence, the absolute value of | 
their sum equals the sum of their separate absolute values, It is this 
crucial fact that allows us to complete the proof quickly: 


lox = al =| (qa + а, + x — (фа + py + 1 
= le(qux — р,) + В(а, + 1% — Pras)! 
=lal 14,х- р,!+ 18| "ах — В+: | 
> lal lax — p l= lgx — pal, 
which is the desired inequality. 


The convergents p, /qn ate best approximations to the irrational 
number x in that every other rational number with the same or smaller 
denominator differs from x by a greater amount. 


THEOREM 13-12. /f1 < b < an, tbe rational number a/b satisfies 


ds 


SECTION 13.4 Infinite Continued Fractions у 375 


Proof: Were it to happen that 
|КР 
then 
14„х — р! = ge |» 65| al, 
violating the conclusion of the lemma. 


Historians of mathematics have focused considerable attention 
on the attempts of early societies to arrive at an approximation to =, per- 
haps because the increasing accuracy of the results seems to offer a mea- 
sure of the mathematical skills of different cultures. The first recorded 
scientific effort to evaluate т appeared in the Measurement of a Circle 
by the great mathematician of ancient Syracuse, Archimedes (287-212 
B.C.). Substantially, his method for finding the value of x was to inscribe 
and circumscribe regular polygons about a circle, determine their pe- 
rimeters, and use these as lower and upper bounds on the circumfer- 
ence. By this means, and using a polygon of 96 sides, he obtained the 
two approximations in the inequality 223/71 < т < 22/7. 

Theorem 13-12 provides insight into why 22/7, the so-called 
"Archimedian value of x,” was used so frequently in place of v; there is 
no fraction, given in lowest terms, with smaller denominator which fur- 
nishes a better approximation. While 


П 223 
|x 2 |= 00012645 апа | ~ 22 | = 0.0007476, 


Archimedes’ value of 223/71, which is not a convergent of т, has a de- 
nominator exceeding 4, = 7. Our theorem tells us that 333/106 (a ratio 
for x employed in Europe in the 16th century) will approximate т more 
closely than any rational number with denominator less than or equal 


to 106; indeed, 


376 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Due to the size of 4, = 33102, the convergent 5,/g, = 355/113 allows 
one to approximate r with a striking degree of accuracy; from the cor- 
ollary to Theorem 13-11, we have 


335 1 3 
|: 113| ^ 113 . 33102 < 107" 


The noteworthy ratio of 355/113 was known to the early Chinese math- 
ematician Tsu Chung-chih (430-501); by some reasoning not stated in 
his works, he gave 22/7 as an “inaccurate value” of x and 355/113 as the 
“accurate value.” The accuracy of the latter ratio was not equalled in 
Europe until the end of the 16th century, when Adriaen Anthoniszoon 
(1527-1617) rediscovered the identical value. 

This is a convenient place to record a theorem which says that 
any "close" (in a suitable sense) rational approximagon to x must be a 
convergent to x. There would be a certain neatness to the theory if 


l-45 
b b? 


implied that a/b = p, /q, for some п; while this is too much to hope 
for, a slightly sharper inequality guarantees the same conclusion. 


THEOREM 13-13. Let x be an irrational number. If tbe rational 
number a/b, where b > 1 and gcd(a , b) = 1, satisfies 


1 


I: deas 
2b? 


зае 


then a/b is one of the convergents p, /q, in the continued fraction 
representation of x. 


Proof: Assume that a/b is not a convergent of x. Knowing that thé 
4, form an increasing Sequence, we see that there is a unique in- 
teger n for which д, « b < д, 4 ,. For this n, the last lemma gives 
the first inequality in the chain 


1 


| nx — р, | bx — 5-21 
4х — Pnl Sl аі= b|x B OE! 


which may be recast as 


SECTION 13.4 Infinite Continued Fractions 377 


In view of the supposition that a/b + p,/q,, the difference bp, 
— aq, is a nonzero integer, whence 1 < | bp, — aq,|. We are able 
to conclude at once that 
«ЕН 

а. b 


1 
ME sai зы; 2p 


This produces the contradiction b < 4„, ending the proof. 


PROBLEMS 13.4 


1. Evaluate each of the following infinite simple continued fractions: 


(a) [2:3] (b) [0; 1,2, 3] 
(c). (2; 1, 2, 1] (9) [1; 2,3,1) 


(e) [1;2, 1, 2, 12] 
Prove that if the irrational number x > 1 is represented by the in- 
finite continued fraction [45 а, @,. . . ], then 1/x has the expan- 
sion (0; 2, а, @,. . . ). Use this fact to find the value of [0; 1, 1, 1, 
.] = [0; T). 
- Evaluate [1; 2, 1] and [1; 2, 3, 1]. 


nN 


> 


4. Determine the infinite continued fraction representation of each 
irrational number below: 
(a) v5 (b) ү 
(o 1+ v3 (d) 5 + V37 
2 4 


(e) 21+ У30 
13 


5. (а) For any positive integer n, show that ут +1 = 
[m; 2n], Ут + 2 = [n; n, 2n] and У F 2n = [n; 1, 2n]. 
‚ [Hint; Notice that 


nt ут? +1 = 2п + (ут +1 т) 
Lan] 
n+ veti’ 


(b) Use part (a) to obtain the continued fraction representation 


of V2, V3, VI5 and V37. 


378 


6. 


7 


n 


11. 


12. 


13. 


Among the convergents of \/15, find a rational number which will 
| approximate V/15 with accuracy to four decimal places. 


а 
ueri 
[Hint: Since x lies between any two consecutive convergents, 
1 ~ [Pets - A|- |е +e- 
Quin +1 4+1 4 4+1 dn 
Now argue by contradiction.] 
. Given the infinite continued fraction (1; 3,1,5,1,7,1,9,. . .], find 


$ 0 are rational numbers and d > 0 is a nonsquare integer. 


Fibonacci Numbers and Continued Fractions CHAPTER 13 


(a) Find a rational approximation to e = [2; 1, 2, 1, 1, 4, 1, 1, 6, 
+  . ] which is correct to 4 decimal places. 
(b) If a and b are positive integers, show that the inequality — - 
e < a/b < 87/32 implies that b = 39. a 
Prove that of any two consecutive convergents of the irrational 
number x, at least one, a/b, satisfies the inequality 


1 


the best rational approximation a/b with 
(a) denominator b < 25; (b) denominator 5 « 225. 
First show that | (1 + үТ0)/3 — 18/13| < 1/(2 - 132); and then 
verify that 18/13 is a convergent of (1 + \/10)/3. 
А famous theorem of A. Hurwitz (1891) says that for any irrational 


number x, there exist infinitely many rational numbers a/b such 
that 


о 
bl sb: 


Taking x = т, obtain three rational numbers satisfying this in- 
equality. 

Assume that the continued fraction representation for the irrational 
number x ultimately becomes periodic. Mimic the method used in 
Example 13-4 to prove that xis of the form r + s Vd, where rand 


Let x be an irrational number with convergents p, /q,. For every 
n > 0, verify that 


(a) 1/24,2, 41 xXIx— p, /q.| < 144,5 


SECTION 13.5  Pell's Equation 379 


(b) the convergents are successively closer to x in the sense that 
еее e 


ds ~i 


[Hint: Rewrite the relation 
ш Satin T Dua 
Xat 14, + dua 
aS X, (Xan — Pn) = = qn- (X — р,-1/4,-1)) 


x 


13.5 PELUS EQUATION 


What little action Fermat took to publicize his discoveries came in the 
form of challenges to other mathematicians. Perhaps he hoped in this 
way to convince them that his new style of number theory was worth 
pursuing. In January of 1657, Fermat proposed to the European math- 
ematical community—thinking probably in the first place of John Wallis, 
England's most renowned practitioner before Newton—a pair of prob- 
lems: 


1. Find а cube which, when increased by the sum of its proper divi- 
sors, becomes a square; for example, 7? + (1 + 7 + 72) = 202, 

2. Find a square which, when increased by the sum of its proper divi- 
sors, becomes a cube. 


On hearing of the contest, Fermat's favorite correspondent, Bernhard 
Frénicle de Bessy, quickly supplied a number of answers to the first 
problem; typical of these is (2 - 3. 5 - 13 - 41 - 47)3, which when in- 

creased by the sum of its proper divisors becomes (27 - 32. 5°. 7 13 
+ 17. 29)2. While Frénicle advanced to solutions in still larger com- 
posite numbers, Wallis dismissed the problems as not worth his effort, 
writing, "Whatever the details of the matter, it finds me too absorbed by 
numerous occupations for me to be able to devote my attention to it 
immediately; but I can make at this moment this response: the number 
1 in and of itself satisfies both demands." Barely concealing his disap- 
Pointment, Frénicle expressed astonishment that a mathematician as ex- 
perienced as Wallis would have made only the trivial response when, in 
view of Fermat's stature, he should have sensed the problem's greater’ 


depths. 


380 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Fermat's interest, indeed, lay in general methods, not in the 
wearying computation of isolated cases. Both Frénicle and Wallis over- 
looked the theoretical aspect that the challenge-problems were meant 
to reveal on careful analysis. While the phrasing was not entirely precise, 
itseems clear that Fermat had intended the first of his queries to be solved 
for cubes of prime numbers. To put it otherwise, the problem called for 
finding all integral solutions of the equation 


D+ x + x2 + = уг, 
or equivalently 
(1 + x)(1 + x?) = y, 


where x is an odd integer, Since 2 is the only prime which divides both 
factors on the left-hand side of this equation, it may be written as 


ab= (>), gcd(a, b) = 1. 


But if the product of two relatively prime integers is a perfect square, 
then each of them must be a square; hence, a = 12, b = v? for some и 
and о so that 


1+ x= 2a=2u, 1+ x? = 2b= 2w 


This means that any integer x which satisfies Fermat's first problem must 
be a solution of the pair of equations 


х= 210—1, х = 2v?-1, 


the second being a particular case of the equation x? = dy? + 1. 

In February, 1657, Fermat issued his Second Challenge, dealing 
directly with the theoretical point at issue: Find a number y which will 
make dy? + 1 a perfect square, where d is а positive integer which is 
not a square; for example, 3. 1? + 1 = 22and5. £ 4-1 = 92. If, said 
Fermat, a general rule cannot be obtained, find the smallest values of y 
which will satisfy the equations 61)? + 1 = x; ог 109y? + 1 = x. 
Frénicle proceeded to calculate the smallest positive solutions of 
x? — dy? = 1 for all permissible values of d up to 150 and suggested 
that Wallis extend the table to d = 200 or at least solve x? — 1515? — 1 
and x? — 313y* = 1, hinting that the second equation might be beyond 
Wallis’ ability. In reply, Wallis’ patron Lord William Brouncker of Ireland 
Stated that it had only taken him an hour or so to discover that 


(126862368)? — 313(7170685)? = —1 


SECTION 13.5  Pell's Equation ` 381 


and so y = 2 - 7170685 - 126862368 gives the desired solution to 
х? — 3139? = 1; Wallis solved the other concrete case, furnishing 


(1728148040)? — 151(140634693) = 1. 


The size of these numbers in comparison with those arising from 
other values of d suggests that Fermat was in possession of a complete 
solution to the problem, but this was never disclosed (later, he affirmed 
that his method of infinite descent had been used with success to show 
the existence of an infinitude of solutions of x? — dy? = 1). Brouncker, 
under the mistaken impression that rational and not necessarily integral 
values were allowed, had no difficulty in supplying an answer; he simply 
divided the relation у 


(r + dy — dr)? = (rè — ay 
by the quantity (7? — d)? to arrive at the solution 


п+ а iit o. 
Pod 7 т-а 


where r # d is an arbitrary rational number. This, needless to say, was 
rejected by Fermat, who wrote that “solutions in fractions, which can be 
given at once from the merest elements of arithmetic, do not satisfy me." 
Now informed of all the conditions of the challenge, Brouncker and 
Wallis jointly devised a tentative method for solving x? — dy? = 1 in 
integers, without being able to give a proof that it will always work. Ap- 
Parently the honors rested with Brouncker, for Wallis congratulated 
Brouncker with some pride that he had “preserved untarnished the fame 
that Englishmen have won in former times with Frenchmen.” 

After having said all this, we should record that Fermat’s well- 
directed effort to institute a new tradition in arithmetic through a math- 
ematical joust was largely a failure. Save for Frénicle, who lacked the 
talent to vie in intellectual combat with Fermat, number theory had no 
special appeal to any of his contemporaries, The subject was permitted 
to fall into disuse, until Euler, after the lapse of nearly a century, picked 
up where Fermat had left off. Both Euler and Lagrange contributed to 
the resolution of the celebrated problem of 1657. By converting \/d into 
an infinite continued fraction, Euler (1759) invented a procedure for ob- 
taining the smallest integral solution of x? — dy? = 1, but he failed to 
Show that the process leads to a solution other than x = 1, y — 0. It was 
left to Lagrange to clear up this matter. Completing the theory left un- 
finished by Euler, Lagrange in 1768 published the first rigorous proof 
that all solutions arise through the continued fraction expansion of 
Va. 


382 Fibonacci Numbers and Continued Fractions CHAPTER 13 


As a result of a mistaken reference, the central point of conten- 
tion, the елџайоп x? — dy? = 1, has gone into the literature with the ' 
titl “Fell? equation.” The erroneous attribution of its solution to the 
English mathematician John Pell (1611-1685), who had little to do with 
the problem, was an oversight on Euler's part. On a cursory reading of 
Wallis’ Opera Mathematica (1693), in which Brouncker's method of 
solving the equation is set forth as well as information as to Pell's work 
on diophantine analysis, Euler must have confused their contributions. 
By all rights we should call x? — dy? = 1 “Еегтагѕ equation,” for he 
was the first to deal with it systematically. While the historical error has 
long been recognized, Pell's name is the one that is indelibly attached 
to the equation. 

Whatever the integral value of d, the equation x? — dy? = 1 is 
satisfied trivially by x= +1, y=0.Ifd< — 1, then x? — dy? 2 1 (except 
when x = y = 0) so that these exhaust the solutions; when d = —1, 
two more solutions occur, namely x = 0, J = +1. The case in which d 
is a perfect square is easily dismissed. For if d = 72 for some 7, then 
x? — dy? = 1 can be written in the form 


(x+ ny(x—ny-1 
which is possible if and only if x + ny = x — ny = +1; it follows that 


PDA Ld ny) + (х — ny) _ 


as 
2 1 


and the equation has nó solutions apart from the trivial ones x = +1, 
0, 

From now on, we shall restrict our investigation of the Pell equa- 
tion x? — dy? = 1 to the only interesting situation, that where d is a 
positive integer which is not a Square. Let us say that a solution x, y of 
this equation is a positive solution provided both x and y are positive. 
Since solutions beyond those with У = 0 can be arranged in sets of four 
by combinations of Signs +x, +y, it is clear that all solutions will be 
known once all positive solutions have been found. For this reason, we 
seek only positive solutions of x? — dy! = 1. 

The result which provides us with a starting point asserts that 
any pair of positive integers satisfying Pell's equation can be obtained 
from the continued fraction representing the irrational number yd. 


SECTION 13.5 Pell’s Equation ОНИ 383 


THEOREM 13-14. If p, q is a positive solution of xt — dy? = 1, then 
р/а is a convergent of the continued fraction expansion of Vd. 
Proof: In light of the hypothesis that p? — dg? = 1, we have 

(0 – 4УФ(р + qva) = 1 
implying that p > qd as well as that 


Pr Ш eM 
q xe «(p + qva) 


As a result, 


b Va Vda 1 
0<—— Vd <—_ = _ =, 
q ue q(aVd + ауд. 2q*Vd_ 24° 
A direct appeal to Theorem 13-13 indicates the p/q must be a con- 
vergent of yd. 


In general, the converse of the preceding theorem is false: not 
all of the convergents р, /4, of Vd supply solutions to x? — dy? = 1. 
Nonetheless, we can say something about the size of the values taken 
on by the sequence p,? — 44,2. 


THEOREM 13-15. /f p/q is a convergent of tbe continued fraction 
expansion of Vd, then x = р, y = q is a solution of one of the 
equations 


x? — dy = k, 
wbere| k| < 1 + 2vyä. 


Proof: If p/q is a convergent of Vd, then the corollary to Theorem 
13-11 guarantees that 


and therefore 


384 Fibonacci Numbers and Continued Fractions CHAPTER 13 


This. being so, we have 
Ip + aVdl=|(p — ауд + 24у] 
та 24/4 < (1 +2\/4) 4. 


These two inequalities combine to yield 
|p? — 401 = Ip — qVdllp + ау 

Я < та +2у24= 1+ 2уа 
which is precisely what was to be proved. 


In illustration let us take the case of d= 7. Using the continued 
fraction expansion y7 = [2; 1, 1, 1, 4], the first few convergents of \/7 
are determined to be 


2/1, 3/1, 5/2, 8/3, .... 
Running through the calculations of D.) — 74,2, we find that 
2-7:1 = 73,32— 7.1 = 2,52 7. 22 = 3, gt — 7. 32 1, 


whence x = 8, y = 3 provides a positive solution of the equation 
я — Ty? = 1, 

While a rather elaborate study can be made of periodic con- 
tinued fractions, it is not our intention to explore this area at any length. 
The reader may have noticed already that in the examples considered 
50 far, the continued fraction expansions of yä all took the form 


Vd = [a a, а, ...,a,} 


that is, the periodic Part starts after one term, this initial term being 
[V4]. It is also true that the last term a, of the period is always equal to 
2a, and that the period, with the last term excluded, is symmetrical (the 
symmetrical part may or may not have a middle term). This is typical of 
the general situation. Without entering into the details of proof, let us 
simply record the fact: if d is a positive integer which is not a perfect 
Square, then the continued fraction expansion of V/d necessarily has the 
form 


И Bis уа: 
Vd = (a; аа a, .. +1 s, а, а, Z]. 


SECTION 13.5 Pell’s Equation 385 


In the case in which d = 19, for instance, the expansion is 
V19 = В; 2, 1, 3, 1, 2, 8] 
while d — 73 gives 
У73 = 18; 1, 1, 5, 5, 1, 1, 16]. 
Among all d < 100, the longest period is that of \/94 which has sixteen 
terms: 
№94 = [9/1,2, 3/1, 1,5, 1/8, 1,5; 1/1, 3; 2, 1, 18]. 


The accompanying table lists the continued fraction expansions 
of Уй, where d is a nonsquare integer between 2 and 40. 


V2 = [12] №22 = [4; 1, 2, 4,2, 1, 8] 

УЗ = [1; 12] V23 = [4; 1, 3, 1, 8] 

V5 = [2:4] V24 = [4; 1, 8] 

№ = 2; 2, 4] V26 = [5; 10] 

V7 = (2; 1, 1, 1, 4] V27 = [5; 5, 10] 

V8 = (2; 1, 4] №28 = [5; 3, 2, 3, 10] 
УЛО = в; 6] { №29 = [5; 2,1, 1, 2, 10] 
Vii = [53,6] У30 = [5:2 10] 

Vi2 = (3:2, 6] УЗІ = [5; 1, 1, 3, 5, 3, 1, 1, 10] 
Vi3 = [5 1,1, 1,6] V32 = [5111,10] 

У = В; 1, 2, 1, 6] v33 = [5; 1, 2, 1, 10] 

Vi5 = B: 1, 6] УЗА = [5; 1, 4, 1, 10] 

У17 = [4; 8] V35 = [5; 1, 10] 

У18 = [4; 4, 8] V37 = (6; 12] 

VI = [4 2,1, 5, 1, 2, 8] V38 = (6; 6, 12] 

V20 = (4; 2,8] уЗЭ (606 03] 

Ул = (4 1,3, 1,8] V40 = (6; 3, 12) 


Theorem 13-14 indicates that if the equation x? — dy? = 1 pos- 


` ѕеѕѕеѕ a solution, then its positive solutions аге to be found among 


х= Ps, y = 4, where p, /q, are the convergents Vd. The period of the 
continued fraction expansion of \/d provides the information we need 
to show that x? — dy? — 1 actually does have a solution in integers; in 
fact, there are infinitely many solutions, all obtainable from the conver- 
gents of yd. Our proof relies оп a lemma. 


386 Fibonacci Numbers and Continued Fractions CHAPTER 13 


ГЕММА. Let the convergents of a continued fraction expansion of 
Vd be p, /4ь. If n is the length of the period of the expansion of 
Vd, then 


Ph = 1 din-i = (-1)™" (k= 1,2, 3,22). 


Proof: For = 1, the continued fraction expansion of V/d can be 
written in the form 


Мар [азаа 2S, Bis хы] 
where 
Xm = [2а а а, 2, 2a) =a, + Vd. 


As in the proof of Theorem 13-6, we have 


XenPrn ba | zh Dim. -2 
а= =. 
ya ХыЧы -1 + Gan -2 
Upon substituting x,, = а, + \/dand simplifying, this reduces to 
VA ва», - 1+ Gen - 2 = Pn 1) = Pan - 1 + Pen -2 — ад - i 


Because the right-hand side is rational and Vd is irrational, the 
foregoing relation requires that 


din - 1 + Gen = 2 = ры, and ры - 1 + Pin = 2 = dain - 1- 


The effect of multiplying the first of these equations by p,,,— , and 
the second by — gn- 1, and then adding them, is 


Pin-3 > ад -3 = Pen - dm -2 — Gan - Din = >» 


But, Theorem 13-7 informs us that Ры - \Gen - 2 T Gen = Pen - 2 = 
(== = (—1)*", and so 


Pin -17 аф, - = (Ае 


which results іп our lemma. 


We can now describe all positive sclutions of x? — dy! = 1 
where d > 0 isa nonsquare integer. We state our main result as 


SECTION 13.5  Pell's Equation 387 


THEOREM 13-16. Let p, /q, be tbe convergents of the continued frac- 
tion expansion of Vd and let n be the length of the period of the 
expansion. 
(1) Ifn is even, then all positive solutions of x* — dy? = 1 are 
given by 
X= Pin- 11 Y= Gen =1 Са В) 


(2) ifn is ода, then all positive solutions of x? — dy? = 1 dre given 
by 
X= Ры-ь Y= Qm- {= 129.) 


Proof: It has already been established that any positive solution %, 
№ Of — dy? = 1 is of the form x, = р,, у = 4. for some con- 
vergent p, / ge. 

Taking the lemma into account, x = Pin- y = Gen -1 Will 
furnish a solution if and only if (—1)*" = 1. When n is even, this 
condition is satisfied by all integers k; when n is odd, the condition 
holds if and only if & is an even integer. 


Example 13-7 
Asa first application of Theorem 13-16, we again consider the equa- 
tion x? — 7y? = 1. Because V7 = [2; 1, 1, 1, 4], the initial twelve 


convergents are 


2/1, 3/1, 5/2, 8/3, 37/14, 45/17, 82/31, 
127/48, 590/223, 717/271,1307/494, 2024/765. 


Since the continued fraction representation of \/7 has a period of 
length 4, the numerator and denominator of any of the convergents 
Di -i/d44- form a solution of x? — 7)? = 1. Thus, for instance, 


Ds/G = 8/3, p,/q, = 127/48, р./ Ф. = 2024/765 


give rise to the first three positive solutions; these solutions are 
x, = 8, y, = 3; = 127, y, = 48; м = 2024, y, = 765. 


388 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Example 13-8 
To find the solution of x? — 13y? = 1 in the smallest positive in- 
tegers, we note that V13 = [5; 1, 1, 1, 1, 6] and that there is a 
period of length 5. The first ten convergents of У13 are 


3/1, 4/1, 7/2, 11/3, 18/5, 119/33, 137/38, 
256/71, 393/109, 649/180. 


With reference to part (2) of Theorem 13-16, the least positive so- 
lution of x? — 13y? = 1 is obtained from the convergent /4 
= 649/180, the solution itself being x, = 649, у, = 180. 


There is a quick way to generate other solutions from a single 
solution of Pell’s equation. Before discussing this, let us define the fun- 
damental solution of the equation x? — dy? = 1 to be its smallest pos- 
itive solution. That is, it is the positive solution x, y with the property 
that x, < x’, у < у’ for any other positive solution x", y'. Theorem 13- 
16 furnishes the following fact: if the length of the period of the con- 
tinued fraction expansion of ү is n, then the fundamental solution of 
x? — dy! = 1 is given by x = pa- у= 4,_, when n is even; and by 
X= р-у = Qan- ı When я is odd. Thus the equation x? — dy? = 1 
can be solved in either n or 2nsteps. 

Finding the fundamental solution.can be a difficult task, since 
the numbers in this solution can be unexpectedly large, even for com- 
paratively small values of 4. For example, the innocent-looking equation 
x? — 991y? = 1 has the smallest Positive solution 


x = 379, 516, 400, 906, 811, 930, 638, 014, 896, 080, 
Y= 12,055, 735, 790, 331,359, 447, 442, 538, 767. 


The situation is even worse with x2 — 10000995? — 1, where the smallest 
positive integer x satisfying this equation has 1118 digits. Needless to 
Say, everything is tied up with the continued fraction expansion of Vå 
and, in the case of V1000099, the period consists of 2174 terms. 

It can also happen that the integers needed to solve х2 — ау? 
= 1 аге small for a given value of d and very large for the succeeding 
value. A striking illustration of this variation is provided by the equation 
x? — 61у? = 1, whose fundamental solution is given by 


x = 17663319049, y = 226153980. 


These numbers are enormous when compared with the case d = 60, 
where the solution is x = 31, y= 4 or with d= 62, where the solution 
is x = 63, y = 8. 


SECTION 13.5  Peli's Equation 389 


With the help of the fundamental solution—which can be found 
by means of continued fractions or by successively substituting y = 1, 
2,3,. . .into the expression 1 + dy? until it becomes a perfect square— 
we are able to construct all the remaining positive solutions. 


THEOREM 13-17. Let х, y, be the fundamental solution of x? — dy? 
= 1. Then every pair of integers x,, y, defined by the condition 
х. Уа (а + АУ" (п=12,3,...) 


is also a positive solution. 


Proof: K is a modest exercise for the reader to check that 
Xn — y, Vd = (x, — ууд)". 


Further, because x, and у, are positive, x, and y, are both positive 
integers. Bearing in mind that x, y, is a solution of x? — dy? = 1, 
we obtain 


х2 — dy? = (x, + y, Vd)(x, — y, Vd) 
= (x + уу) "(а —yvd" 
= (s dyr = 1° = 1, 
and so x,, y, is a solution. 
Let us pause for a moment to look at an example. By inspection, 
it is seen that x, = 6, у = 1 forms the fundamental solution of 


х? — 35y? = 1. A second positive solution ж, y, can be obtained from 
the formula 


№ + »\35 = (6 + 35)? = 71 + 1235, 


which implies that x, = 71, у, = 12. These integers satisfy the equatioi 
x? — 3592 = 1, since 


71? — 35 . 122 = 5041 — 5040 = 1. 


A third positive solution arises from 


х + %ү35 = (6 + 35) 
= (71 + 12ү35)(6 + V35) = 846 + 143/35. 


This gives x, = 846, y, = 143 and in fact 
846? — 35 - 1432 = 715716 — 715715 = 1, 


so that these values provide another solution. 


390 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Returning to the equation x? — dy? = 1, our final theorem tells 
us that any positive solution can be calculated from the formula 


Sait Ya Va= (м + » vd), 


where n takes on integral values; that is, if м, vis a positive solution of 
x! — dy? = 1, then y = x,, v = y, for a suitably chosen integer п. We 
state this as 


THEOREM 13-18. If X, yy is the fundamental solution of x? — ау? 
“= 1, then every positive solution of the equation is given by Xn, Yn, 
where x, and y, are tbe integers determined from 


Xa + у.Ма = (х + ууд" (п=1,2,3,...) 


Proof: In anticipation of a contradiction, let us suppose that there 
exists a positive solution и, v which is not obtainable by the for- 
mula (x, + у, Vd)”. Since x, + y, Vd 7 1, the powers of x, + 
у Vd become arbitrarily large; this means that и + v V/d must lie 
between two consecutive powers of x, + y, Vd, say, 


Ga + Vd) < u+ vid < (x + ууд)" +! 
or, to phrase it in different terms, 
x, y,Vd < ut vd < (x, + y, Vd)x, + yy Vd). 


On multiplying this inequality by the positive number x, 
— y, Vd and noting that x,? — dy,? = 1, we are led to 


1« (х, — y, V d)(u + vyd) <% + y Vd. 


Next define the integers r and s by r + syd = (x, — уУд 
(u + vyd); that is, let 


r= жи — YyVA, 5= XU — уи. 
An easy calculation reveals that 
т — dè = (x — dyd) è — dw) = 1 


and so rz, s is a solution of x? — dy? = 1 satisfying 1 
«rt syd «x + уу. f 


SECTION 13.5  Pell's Equation 391 


To complete the proof, it remains to show that r, s is 
a positive solution. Because 1 < r+ syd, we find that 0 < r 
— s Vd « 1. In consequence, 


2r= (r+ sd) + (r— syd >1+0>0 
sVd = ("+ sVd) (л уа) >1-1=0 


which makes both rand s positive. The upshot is that since x, yı 
is the fundamental solution of x? — dy? = 1, we must have x, < r 
and y, < s; but then x, + V4 < r + syd, violating an earlier 
inequality. This contradiction ends our argument. 


Pell's equation has attracted mathematicians throughout the ages. 
There is historical evidence that methods for solving the equation were 
known to the Greeks some 400 years before the beginning of the Chris- 
tian era. A famous problem of indeterminate analysis known as the “cattle 
problem" is contained in an epigram sent by Archimedes to Eratos- 
thenes as a challenge to Alexandrian scholars. In it, one is required to 
find the number of bulls and cows of each of four colors, the eight un- 
known quantities being connected by nine conditions. These condi- 
tions ultimately involve the solution of the Pell equation 


x* — 4729494y? = 1, 


which leads to enormous numbers; one of the eight unknown quantities 
is a figure having 206545 digits (assuming that 15 printed digits take up 
one inch of space, the number would be over 1/5 of a mile long). While 
it is generally agreed that the problem originated with the celebrated 
mathematician of Syracuse, no one contends that Archimedes actually 
carried through all the necessary computations. 

Such equations and dogmatic rules, without any proof, for cal- 
culating their solutions spread to India more than a thousand years before 
they appeared in Europe. In the 7th century, Brahmagupta said that a 
person who can within a year solve the equation x? — 92y? = 1 isa 
mathematician; for those days, he would at least have to be a good ar- 
ithmetician, since x — 1151, y — 120 is the smallest positive solution. 
А computationally more difficult task would be to find integers satisfying 
x? — 94y? = 1, for here the fundamental solution is given by x = 
2143295, y — 221064. 


392 Fibonacci Numbers and Continued Fractions CHAPTER 13 


Fermat was not the first therefore to propose solving the equa- 
tion x? — dy? = 1, or even to devise a general method of solution. He 
was perhaps the first to assert that the equation has an infinitude of so- 
lutions whatever the value of the nonsquare integer d. Moreover, his effort 
to elicit purely integral solutions to both this and other problems was a 
watershed in number theory, breaking away as it did from the classical 
tradition of Diophantus’ Arithmetica. 


PROBLEMS 13.5 | 

1. If x, y, is a positive solution of the equation x? — dy? = 1, prove 

1 that x, > у. 

2. By the technique of successively substituting y = 1,2, 3,. . . into 
dy? + 1, determine the smallest positive solution of x? 
— dy? = 1 when d is 

(2.7; (b) 11; (c) 18; (d) 30; (e) 39. 

3. Find all positive solutions of the following equations for which 
y < 250: 

(a) x*—2571 (b »x-—3y-214 (с) х 5у = 1. 

4. Show that there is an infinitude of even integers n with the property 
that both я + 1 and n/2 + 1 are perfect squares. Exhibit two such 
integers. 

5. Indicate two positive solutions of each of the equations below: 

(а) x*—23y! = 1; (b) x? — 26у: = 1; (c) x? — 33y? = 1. 

6. Find the fundamental solutions of 

(а) x = 29у: —1 (b) х — 41у = 1; (c) x?— 74y = 1. 
(Hint: V41 = (6; 2,2, 12] and V74 = (8; T, 1; 1, 1, 16] ] 
7. Exhibit a solution of each of the following equations: 
(а) x*—13y = -1 (b) x — 29y? = -1, 
(с) х2 — 41y? = -1, 
8. Establish that if x, y, is a solution of the equation x^ — dy? 


= —1, then x = 2x? + 1, y = 2my, satisfies x? — ay? = 1. 
Brouncker used this fact in solving x? — 3137? = 1. 

9. If dis divisible by a prime p — 3 (mod 4), show that the equation 
x? — dy? = —1 has no solution. 


SECTION 13.5  Pell's Equation 393— 


10. If x, y; is the fundamental solution of x? — dy? = 1 and 
*tyvVd-G + лу" (n712,5...) | 


prove that the pair of integers x,, y, can be calculated from the for- 
mulas 


x, = [s + iA" + a = „УЗ 
Vn = aval + лу)" — (x — nV". 


11. Verify that the integers x,, y, in the previous problem can be de- 
fined inductively either by 


Xn t 1 = м, + ау, 
Ya ta = му, + Xr 
fors 1,2, 552. , or by 
Xn +1 = 201, — Xn- 1 
Ynt i 7 23s 7 Yn = 1 
fot m 2,3, 1. 
12. Using the information that x, = 15, у, = 2 is the fundamental so- 
lution of x? — 56y? = 1, determine two more positive solutions. 
13. (a) Prove that whenever the equation x? — dy? — c is solvable, 
then it has infinitely many solutions. [Hinz: If u, v satisfy 
x? — ау? = cand r, ssatisfy x? — су? = 1, then (ur + dvs)? 
— dlus + vr) = (1? — а?) (т — ds) = с] 
(b) Given that x = 16, y = 6 is a solution of x? — 7y? = 4, obtain 
two other positive solutions. 
(c) Given that x = 18, у = 3 is a solution of x? — 355? = 9, obtain: 
two other positive solutions. 
14. Applythe theory of this section to confirm that there exist infinitely 
many primitive Pythagorean triples x, у, zin which xand yare con- 
secutive integers. 


ape, 
5 


"T PA TE 
bi rois 
d 


Y 1 Ea 
| он imo 


2691 


Appendixes 


The Prime Number Theorem 


Although the sequence of prime numbers exhibits great irregularities of 
detail, a trend is definitely apparent in the large. The celebrated Prime 
Number Theorem allows one to predict, at least in gross terms, how many 
primes there are less than a given number. It states that if the number 
is n, then there are about n divided by log 7 (here, log n denotes the 
natural logarithm of n) primes before it. Thus the Prime Number 
Theorem tells us how the primes are distributed “in the large," or “on 
the average,” or “in a probability sense." 

One measure of the distribution of primes is the function r(x) 
which, for any real number x, represents the number of primes that do 
not exceed x; in symbols, x(x) = E, =, 1. In Chapter 3, we proved that 
there are infinitely many primes, which is simply an expression of the 
fact that lim, т(х) = oo. Going in the other direction, it is clear that 
the prime numbers become оп the average more widely spaced in the 
higher parts of any table of primes; in informal terms, one might say that 
almost all the positive integers are composite. 

By way of justifying our last assertion, let us show that the limit 
lim, — m(x)/x = 0. Since x(x)/x = 0 for all x > 0, the problem is 
reduced to proving that r(x)/x can be made arbitrarily small by choosing 
x sufficiently large. In more precise terms, what we shall prove is that if 
€ > 0 is any number, then there must exist some positive integer Nsuch 
that r(3)/x < e whenever x > N. 

To start, let be a positive integer and use Bertrand's conjecture 
to pick a prime p with 2"-' < p = 2”. Then pl (2")!, but p Г (2^7)! 
so that the binomial coefficient (34 - 1) is divisible by p. This leads to the 
inequalities 


20,27.) И pz (2"- 1)" = san 7 
2 «psa 
and, upon taking the exponents of 2 on each side, the subsequent in- 
equality 


(*) 2") € x(0* 59) = 


ГЕ 


396 


The Prime Number Theorem 397 


If we successively set n = 2k, 2k—1,2k—2,... ‚З in (*) and add 
the resulting inequalities, we get 
ze ә 
(22) — (2) = х пд 
But (2?) < 2? trivially, so that 
2h y П D 2k 2r 
т. ст 


In the last two sums, let us replace the denominators r — 1 by 1 and & 
respectively to arrive at 


* 2k 
(27%) < + У 2/k< 26+ + e+ v, 
ги? reat 
Since k < 2*, we have 2**! < 22+ 1/k for k = 2 and so 
(220) < 2(22* +14) = 4(2?4/k), 
which can be written as 
(97) (220) /23* < 4/6. 


With this inequality available, our argument proceeds rapidly to itscon- 
clusion. Given any real number x > 2, there exists a unique integer k 
satisfying 2247? < x = 224, From (**), it follows that 


*(х)/х S v(29)/x < (24) /22 -2 = 4 (m(22)/22) < 16/h. 
If we now take x > N= 2205*", then k = [16/4] + 1; hence, 
т(х)/х < 16/16/g + 1 < e 


as desired. 
10 was Euler (probably about 1740) who introduced into analysis 


the zeta function Е 


К = Хитачи... 


the function on whose properties the proof of the Prime Number 
Theorem ultimately depended. Euler's fundamental contribution to the 
Subject is the formula representing {(5) as a convergent infinite product; 
namely, 


9) = Па- 1/257 (s>1) 
р 


398 The Prime Number Theorem 


where p runs through all primes; its importance arises from the fact that 
it asserts equality of two expressions of which one contains the primes 
explicitly while the other does not. Euler considered {(5) as a function 
of a real variable only, but his formula nonetheless indicates the exis- 
tence of a deep-lying connection between the theory of primes and the 
analytic properties of the zeta function. 

Euler's expression for {(s) results from expanding each of the 
factors in the right-hand member as 


1 3 
вет. 1+ 1/p* + (1/p*)? + (1/p})? +... 


and observing that their product is the sum of all terms of the form 


1 
(“p +++ р): 


where р, «+ , p, аге distinct primes. Since every positive integer n can 
be written uniquely as a product of prime powers, each term 1/7 ap- 
peárs once and only once in this sum; that is, the sum simply is 
Z9l1,1/m». 

It turns out that Euler's formula for the zeta function leads to a 
deceptively short proof of the infinitude of primes: the occurrence of a 
finité product on the right-hand side would contradict the fact that 
lim, $(s) = oo. 

Legendre was the first to make any significant conjecture about 
functions which give a good approximation to x(x) for large values of 
x. In his book Essai sur la Théorie des Nombres (1798), Legendre ven- 
tured that (x) is approximately equal to the function 


LR n ar 
log x — 1.08366 ` 


By compiling extensive tables on how the primes distribute themselves 
in blocks of 1000 consecutive integers, Gauss reached the conclusion 
that x(x) increases at roughly the same rate as each of the functions 


x/log x and 
цо) = I du 
2 log u 


with the logarithmic integral Li(x) providing a much closer numerical 
approximation. Gauss’ observations were communicated in a letter to 
the noted astronomer Encke in 1849, and first published in 1863, but 
appear to have begun as early as 1791 when Gauss was fourteen years 
old—needless to say, well before Legendre's treatise was written. 


The Prime Number Theorem 399 


It is interesting to compare these remarks with the evidence of 
the tables: 


SSS 


— хЛор х Li(x) — x(x)/(x/log x) 
log x — 1.08366 


ee ES ee 


x a(x) 


1000 168 172 145 178 1.159 
10,000 1,229 1,231 1086 1246 1.132 
100,000 9,592 9,588 8,686 9,630 1.104 
1,000,000 78,498 78,534 72,382 78,628 1.084 
10,000,000 664,579 665,138 620,420 664,918 1.071 


100,000,000 5,761,455 5,769,341 5,428,681 5,762,209 1.061 


The first demonstrable progress towards comparing x(x) with 
x/log x was made by the Russian mathematician Tchebychef. In 1850, 
he proved that there exist positive constants a and b, a < 1 < b, such 
that 


a(x/log x) < x(x) < b(x/log x) 


for Sufficiently large x. Tchebychef showed further that if the quotient 
T(X3)/(x/log x) has a limit as x increases, then its value must be 1. Tche- 
bychef's Work, fine as it is, is a record of failure: what he could not es- 
tablish is that the foregoing limit does in fact exist, and, as he failed to 
do this, he failed to prove the Prime Number Theorem. It was not until 
Some 45 years later that the final gap was filled. j 

We might observe at this point that Tchebychef's result implies 
that the series Z, 1/p, extended over all primes, diverges. To see this, 
let p, be the nth prime, so that я(р,) = п. Since we have 


m (x) > a(x/log x) 
for Sufficiently large x, it follows that the inequality 
п = т(р,) > a(p,/log p) > VP. 


holds if n is taken sufficiently large. But n? > p, leads to log р, < 
2 log n and so we get 


ар, < n log p, < 2n log n 


When n is large. In consequence, the series Хе. , 1/p, will diverge in 
comparison with the known divergent series Zg- z (1/n log n). 


400 The Prime Number Theorem | 


А point of passing interest is that V. Brun, around 1920, showed 
that the twin primes are so sparse that the sum of their reciprocals con- 
verges. 

The radically new ideas which were to furnish the key to a proof 
of the Prime Number Theorem were introduced by Riemann in his epoch- 
making memoir Uber die Anzabl der Primzablen unter einer gege- 
benen Grósse of 1859 (his only paper on the theory of numbers). Where 
Euler had restricted the zeta function ¢(s) to real values of s, Riemann 
recognized the connection between the distribution of primes and the 
behavior of {(5) as a function of a complex variable s= a + bi. He enun- 
ciated'a number of properties of the zeta function, together with a re- 
markable identity, known as Riemann's Explicit Formula, relating x(x) i 
to the zeroes of {(s) in the s-plane. The result has caught the imagination 
of most mathematicians because it is so unexpected, connecting two 
seemingly unrelated things; namely, number theory, which is the study 
of the discrete, and complex analysis, which deals with continuous pro- 
cesses. 

In his memoir, Riemann made a number of conjectures con- 
cerning the distribution of the zeroes of the zeta function. Thé most 
famous is the so-called Riemann Hypothesis which asserts that all the 


nonreal zeroes of {(s) are at points it bi of the complex plane; that is, 


they Це on the “critical line” Re(s) = 1/2. A series of large computations 
has been made, culminating in the recent verification that the Riemann 
Hypothesis holds for all of the first (1.5) 10° zeros, an effort that involved 
over a thousand hours on a modern supercomputer. This famous con- 
/ jecture has never been proved ог disproved, and it is undoubtedly the 
most important unsolved problem in mathematics today. 
Riemann’s investigations were exploited by Hadamard and de la 
Vallée Poussin who in 1896, independently of each other and almost 
simultaneously, succeeded in proving that 


a(x) 


х œ X/log x 


The result expressed in this formula has since become known as the 
Prime Number Theorem. De la Vallée Poussin went considerably further 
in his research. He showed that, for sufficiently large values of x, +(x) 
is more accurately represented by the logarithmic integral Li(x) than by 
the function : 

PI. 
yn са 
j log x — A' 


The Prime Number Theorem E 401 


no matter what value is assigned to the constant А, and that the most 
favorable choice of A in Legendre's formula is 1. This is at variance with 
Legendre's original contention that A = 1.08366, but his estimate (based 
on tables extending only as far as x = 400,000), had long been recog- 
nized as having little more than historical interest, ' 

Today a good deal more is known about the relationship be- 
tween x(x) and Li(x). We shall only mention a theurem of Littlewood 
to the effect that the difference x(x) — Li(x) assumes both positive and 
negative values infinitely often as x runs over all positive integers. Lit- 
tlewood's result is a pure "existence theorem" and no numerical value 
of x for which x(x) — Li(x) is positive has ever been found. It is а си. 
rious fact that an upper bound on the size of the first x satisfying v (x) 
7 Li(x) is available; such an x must occur someplace before 


ее" == 101. 


a number of incomprehensible magnitude. This upper limit, obtained 
by S. Skewes in 1933, has gone into the literature under the name of the 
Skewes number. Somewhat later (1955), Skewes decreased the top ex- 
ponent in his number from 34 to 3. In 1986, this bound was reduced 
considerably when it was proved that there are more than 10™ succes- 
sive integers x between (6.62)10°” and (6.69)10?" for which x(x) 
> (х). However, an explicit numerical value of x is still beyond the 
reach of any computer. What is perhaps remarkable is that x(x) < Li(x) 
for all x at which +(x) has been calculated exactly; that is, for all x in 
the range x < 4.1015. Some values are given in the following table: 


So 


x a(x) Li(x) — x(x) 

о ПАН ee ОНО ОО А. 
10° 50,847,543 1701 
10” 455,052,511 3104 
10" 4,118,054,813 11,588 
10” 37,607,912,018 38,263 
105 346,065,536,839 108,971 
10" 3,204,941,750,802 314,890 
10% 29,844,570,422,669 1,052,619 
105 279,238,341,038,925 =) > 3,214,632 
4.106 1,075,292,778,758,150 5,538,861 


402 The Prime Number Theorem 


Although this table gives the impression that Li(x) — x(x) is always pos- 
itive and gets larger as x increases, negative values will eventually over- 
whelm the positive ones: 

А useful sidelight to the Prime Number Theorem deserves our 
attention; to wit, 


1 
lim 2287 =. 
no Pn 
For, starting with the relation 


lim == х1 


x o 


, 


we may take logarithms and use the fact that the logarithmic function is 
dontinuous to obtain 


lim flog z(x) + log(log x) — log x] = 0 


or equivalently 
lim SEC e pice tien, OENB 9). 
‚окт, logx xo logx 
But lim, _ 108 (08 x)/log x = 0, which leads to 
lim, — log (х) Лов x = 1. 
We then get 
nen т(х) log х= lim a(x) log r(x) орх 
х о х x— o x log w(x) 
= tiny 008 x(x) 
xo x 
Setting x = p,, so that я(р,) = n, the result 
re piace Sii ml 


follows. This may be interpreted as asserting that if there are я primes 
inan interval, then the length of the interval is roughly n log 7. 


MERE T 


"WE RR 


The Prime Number Theorem 403 


Until recent times, the opinion prevailed that the Prime Number 
Theorem could not be proved without the help of the properties of the 
zeta function, and without recourse to complex function theory. It came 
as a great surprise when in 1949 the Norwegian mathematician Atle Sel- 
berg discovered a purely arithmetical proof. His paper An Elementary 
Proof of tbe Prime Number Theorem is "elementary" in the technical 
sense of avoiding the methods of modern analysis; indeed, its content 
is exceedingly difficult. Selberg was awarded a Fields medal at the 1950 
International Congress of Mathematicians for his work in this area. The 
Fields Medal is considered to be the equivalent in mathematics of a Nobel 
Prize. (It is generally believed that Alfred Nobel's bad relations with the 
Swedish mathematician Gösta Mittag-Leffler was the reason that Nobel 
did not establish a prize in mathematics.) 


16, 


17. 


General References 


Adams, W., and L. Goldstein. 1976. Introduction to Number Theory. Engle- 
wood Cliffs, NJ.: Prentice-Hall. 

Agnew, Jeanne. 1972. Exploring Number Theory. Monterey, Calif.: Brooks/ 
Cole. 

Archibald, Ralph. 1970. An Introduction to the Theory of Numbers. Co- 
lumbus, Ohio: Charles E. Merrill. 

Baker, Alan. 1984. A Concise Introduction to the Theory of Numbers. Cam- 
bridge, England: Cambridge University Press. 

Barnett, I. A. 1972. Elements of Number Theory. Rev. ed. Boston: Prindle, 
Weber & Schmidt. 

Beck, A., M. Bleicher, and D. Crowe. 1969. Excursions into Mathematics. 
New York: Worth. ] 

Beiler, A. H. 1966, Recreations in the Theory of Numbers. 2d ed. New York: 
Dover. 

Burton, David. 1985. The History of Mathematics; An Introduction. Boston: 
Ailyn and Bacon. 

Dantzig, Tobias. 1956. Number: Tbe Language of Science. Garden City, N.Y.: 
Doubleday. 

Dickson, Leonard. 1920. History of tbe Tbeory of Numbers. Vols. 1, 2, 3. 
Washington, D.C.: Carnegie Institute of Washington. (Reprinted, New York: 
Chelsea, 1952). 

Edwards, Harold. 1977. Fermat's Last Theorem. New York: Springer-Verlag. 
Eves, Howard. 1983. An Introduction to the History of Mathematics. 5th ed. 
Philadelphia: Saunders College Publishing. 

Guy, Richard. 1981. Unsolved Problems in Number Tbeory New York: 
Springer-Verlag. 

Hardy, G. H. and E. M. Wright. 1975. An Introduction to tbe Tbeory of Num- 
bers. 5th ed. London: Oxford University Press. 

Heath, Thomas. 1910. Diopbantus of Alexandria. Cambridge, England: 
Cambridge University Press. (Reprinted, New York: Dover, 1964.) 
Hoggatt, Jr., Verner E. 1969. Fibonacci and Lucas Numbers. Boston: 
Houghton Mifflin. 

Ireland, K. and M. Rosen. 1972. Elements of Number Tbeory: Including an 
Introduction to Equations over Finite Fields. Tarrytown-on-Hudson, N.Y.: 
Bogden and Quigley. 


37. 


38. 


Landau, Е. 1952. Elementary Number Theory. Trans. Goodman. New York: 
Chelsea. 

Le Veque, William. 1977. Fundamentals of Number Theory. Reading, Mass.: 
Addison-Wesley. 

Long, Calvin. 1972. Elementary Introduction to Number Theory. 2d ed. 
Lexington, Mass.: D. C. Heath. 


. Maxfield, J. and M. Maxfield. 1972. Discovering Number Theory. Philadel- 


phia: W. В. Saunders. 

Nagell, Trygve. 1964. Introduction to Number Theory. 24 ed. New York: 
Chelsea. 

Niven, I. and Н. Zuckerman, 1980. An Introduction to the Theory of Num- 
bers, 4th ed. New York: John Wiley and Sons. 

Ogilvy, C. S. and J. Anderson, 1966, Excursions in Number Theory. New York: 
Oxford University Press. 


. Olds, Carl О. 1963. Continued Fractions. New York: Random House. 


Ore, Oystein. 1948. Number Theory and Its History. New York: McGraw- 
Hill. 


‚ 1967. Invitation to Number Theory. New York: Random House. 
Ribenboim, Paulo. 1979. 43 Lectures on Fermat's Last Theorem. New York: 
Springer-Verlag. 

. 1988. The Book of Prime Number Records. New York: Springer- 


Verlag. 


Riesel, Hans. 1985. Prime Numbers and Computer Methods for Factoriza- 
tion. Boston: Birkhauser. 


. Roberts, Joe. 1977. Elementary Number Theory. Cambridge, Mass.: MIT 


Press. 


. Rosen, Kenneth. 1987. Elementary Number ТЬеогу and Its Applications. 


2d. еа. Reading, Mass.: Addison-Wesley, 


. Scharlu, W. and H. Opolka. 1984. From Fermat to Minkowski. New York: 


Springer-Verlag. 


-* Schroeder, Manfred. 1987. Number Theory in Science and Communica- 


tion. 2d, ed. New York: Springer-Verlag. 

Shanks, Daniel. 1985. Solved and Unsolved Problems in Number Theory. 
3d ed. New York: Chelsea. 

Shoemaker, Richard. 1973. Perfect Numbers. Washington, D.C.: National 
Council of Teachers of Mathematics. 

Sierpinski, Waclaw. 1964. Elementary Theory of Numbers. Trans, Hulanicki. 
Warsaw: Panstwowe Wydawnictwo Naukowe. 

. 1962. Pythagorean Triangles. Trans. Sharma. New York: Academic 


Press. 


References 407 


39. 
40. 
41. 


42. 


43. 
44. 


Starke, Harold. 1970. An Introduction to Number Theory. Chicago: Markham. 
Stewart, B. М. 1964. Theory of Numbers. 2d ed. New York: Macmillan. 
Struik, Dirk. 1969. A Source Book in Mathematics 1200-1800. Cambridge: 
Harvard University Press. 

Upensky, J. and М. A. Heaslet. 1939. Elementary Number Theory. New York: 
McGraw-Hill. 

Vorobyov, N. 1963. The Fibonacci Numbers. Boston: D. C. Heath, 

Weil, Andre. 1984. Number Theory: An Approach through History. Boston: 
Birkhauser. 


ver d d HE PAT d 


ои, и otii ван 
METAL INS mo Mun ims ood ie 


4 


410 Suggestions for Further Reading 


18. . "Patterns in Primes Are a Clue to the Strong Law of Small Numbers." 
° Scientific American 243(Dec. 1980): 18-28. 

19. Goldstein, Larry. “А History of the Prime Number Theorem.” American 
Mathematical Montbly 80(1973): 599-615. * 

20. Honsberger, Ross. “An Elementary Gem Concerning x(n), the Number of 
Primes < я.” Two-Year College Mathematics Journal 11(1980): 305-11. 

21. Lee, Flvin, and Joseph Madachy. “The History and Discovery of Amicable 
Numbers— Part I." Journal of Recreational Mathematics 5(1972): 77-93. 

22. Luciano, Dennis and Gordon Prichett. "Cryptography: From Caesar Ciphers 
to Public-Key Cryptosystems." College Matbematics Journal 18 (1987): 
2-17. 

23. Mahoney, Michael. “Fermat's Mathematics: Proofs and Conjectures." Sci- 
ence 178(Oct. 1972): 30-36. 

24. McCarthy, Paul. “Odd Perfect Numbers." Scripta Matbematica 23(1957): 
43-47. 

25. Matkovic, David. "The Chinese Remainder Theorem: An Historical Ac- 
count.” Pi Mu Epsilon Journal 8 (1988): 493-502. 

26. Ondrejka, Rudolf. "Ten Extraordinary Primes." Journal of Recreational 
Mathematics 18(1985-86): 87-92. 

27. Pomerance, Carl. “Recent Developments in Primality Testing.” The Matb- 
ematical Intelligencer 3(1981): 97-105.. 

- “The Search for Prime Numbers." Scientific American 247(Dec. 
1982): 122-30. 

29. Reid, Constance. "Perfect Numbers.” Scientific American 88(March, 1953): 
84-86. \ 

30. Ribenboim, Paulo. “Lecture: Recent Results on Fermat's Last Theorem." Ca- 
nadian Mathematical Bulletin 20(1977): 229-42. ` 

31. Schroeder, Manfred. “Where Is the Next Mersenne Prime Hiding?" The 
Matbematical Intelligencer 5, no. 3 (1983): 31-33; 

32. Sierpinski, Waclaw. “Оп Some Unsolved Problems of Arithmetic." Scripta 
Mathematica 25(1960): 125-36. à 

33. Slowinski, David. "Searching for the 27th Mersenne Prime." Journal of Rec- 
reational Matbematics 11(1978-79): 258-61. 

34. Small, Charles. Waring's Problem." Mathematics Magazine 50(1977): 12- 
16. i 

35. Uhler, Horace. “A Brief History of the Investigations on Mersenne Numbers 
and the Latest Immense Primes.” Scripta Mathematica 18(1952): 122-31. 

36. Vandiver, H. S. “Fermat's Last Theorem.” American Mathematisal Monthly 
53(1946): 555-78. : 


Suggestions for Further Reading 411 


37. Wagon, Stan. “Fermat's Last Theorem." The Mathematical Intelligencer 8, 
no. 1 (1986): 59-61. 

. "Carmichael's ‘Empirical Theorem.’” The Mathematical Intelli- 
gencer 8, no. 2 (1986): 61-63. 

39. Yates, Samuel. “Peculiar Properties of Repunits.” Journal of Recreational 
Mathematics 2(1969): 139-46. 

. "The Mystique of Repunits.” Mathematics Magazine 51(1978): 22- 


38. 


40. 


28. 


414 Tables 
TABLE 2 


The following table lists tbe smallest prime factor of each odd integer n, 3 < п = 4999, 
not divisible by 5; a dash in the table indicates that n is itself prime. 


1 3 41 — 

3 — 7 403 13 

7 = 3 407 11 
908 — 1 409 — 
Noo 3 — AM -3 
3 — — 3 413 7 
17 — 3 7 4m 5 
19 — 7 3 49 — 
214.3 11 13 421 — 
259, — 3 — 423 3 
27.78 — — Д7: 7 
29 — 3 — 429 3 
3 — E 3 41 — 
33 3 7 — 433 — 
т — 3 437 19 
39 3 — 439 — 
ela 441 3 
44 — 443 — 
ATUM c 447 3 
49 7 49 — 
У. — 451 1 
hele —— 3 453 3 
57:3 — — 4 — 
Sox 3 7 459 3 
6 = 7 3 41 — 
63 3 — — 43 — 
rez = 3 47 — 
69 3 13 — 469 7 
TL pee 3 = 41 3 
ИЗ — 3 43 п 
77 7 3 EA 477 3 
т 2 = 3 49 — 
#1 3 — 481 13 
BS — 485 3 
87 3 F4 487 I 
89 — 17 489 3 
91 7 3 4915. = 
З; — 493 17 
ТАИ = 3 497 7 
99 5 13 499. г == 


Tables 


lSulol 


w 
м 
Гозо 1 Зъзь | 


11 


u 
Я 
Я 
lwlwSlusSelul aw 
lolu 


ЕА 
N 
lwleslonwlel 
lSulunl 


w uw 


ee! Los | | | РЕЗ 1 | Sw | $ | 
Хо ТЕЗ (ыы ть бт ve 


І блы 1ьЕ 


> 
= 


очы | очо 1 


D 


lwlestulel 


Bobanu l 


КЕСКЕ 


Slelwwle&wlwiluwlod 


= 


[olol Bele 


415 


418 


3 
3 
7 
3 
3 
43 
7 
3 
19 
3 
13 
3 
23 
3 
7 
11 
29 
3 
3 
19 
3 
31 
3 
3 
7 
3 


| .*G5wecwlueiuw—asilixlluwllu 


~ =- w 
vousy I Uu cu 


ЕРИ АРЕ 


= 
aw 


ІІ зы тыт 


Iewletsttwlultiv3ealdc 


ЕТТ 


а Боо fw 


> 
sue 


ЕТЕКТЕ" 


1 
4 


41 
23 
13 
3 
7 
3 
11 
3 
7 
3 
7 
3 
3 
3 
3 
3 
13 
n 
7 
7 
5 
» 
3 
29 
5 
15 
3 
7 
25 


2679 
2681 
2685 
2687 
2689 
2691 
2695 
2697 
2699 


3 
19 
3 
7 
3 
3 
43 
» 
n 
3 
3 
7 
19 
5 
3 
n 
7 
5 
3 
17 
3 
3 
7 
3 
3 


~~ 


ы ГГ 1 ачы о ро buvel lurve! 


>m 


#1 
ex 


lw Su 


- 2 - 
Фос ч 


РЕЗ ГТГ ГГ ГьЗ! 


Гао То toul ud] wl u 


lelu 


419 


Br 


nur 


iE 


422 : Tables 


401 — 3 
4003 — 7 
3007  — 3 
3000 19 = 
4011 3 n 
4013  — 3 
3o 3 7 
4019 -— 3 
401 — = 
4023 53 ET 
4027 — 19 
4029 3 43 
4031 29 3 
4033 37 n 
4037 n 3 
4039 25 
4041 — 
4043 13 2 
4047 — 
4049  — 3 
4051 — — 
4053 3 61 
4057 — — 
4059 3 7 
4061 31 3 
4063 17 EA 
4067 7 3 
4069 13 41 
4001 3 17 
403 — 3 
407 3 11 
4079 — 3 
481 7 2% 
4083 3 E 
4087 61 7 
4089 3 67 
401 — 3 
493 — = 
407 17 3 


= 
| = 


Tables 


о аа [120 or 1) c 


есь < 


elulSelweSsiuulul во Зо [| 


Sublet 


(27 


3 
3 


2 de Us, 
чого 


m 
ч 


| |e fs Ie pe 5 
uelelt$ о о а Чо [о 


е Зоо Sw 


еб Е pe 


"m 


Быть 


Yow 


| 


ГГ тьзаь Гы | 


TABLE 3 


The following table lists the prime numbers between 5000 and 10,000. 


Tables 


9067 
9091 
9103 


9109 
9127 
9133 
9137 
9151 
9157 
9161 
9173 
9181 

9187 
9199 
9203 
9209 
9221 
9227 
9239 
9241 

9257 
927- 


9281 


9283 
9293 
9311 
9319 
9323 


9337 
9341 
9343, 
9349 
9371 


9377 
9391 
9397 
9403 
9413 


9419 
9421 
9431 
9433 
9437 
9439 
9461 
9463 
9467 
9473 


9479 
9491 
9497 
9511 
9521 


9533 
9539 
9547 
9551 
9587 
9601 
9613 
9619 
9623 
9629 
9631 
9643 
9649 
9661 
9677 


425 


9679 
9689 
9697 
9719 
9721 
9733 
9739 
9743 
9749 
9767 
9769 
9781 
9787 
9791 
9803 
9811 
9817 
9829 
9833 
9839 
9851 
9857 
9859 
9871 
9883 
9887 
9901 
9907 
9923 
9929 
9931 
9941 
9949 
9967 
9973 


TABLE 4 


The following table gives the number of primes and the number of pairs of twin primes т 
the indicated intervals, 


Number of 
Interval primes 


1-100 
101-200 
201-300 
301-400 
401-500 


501-600 
601-700 
701-800 
801-900 
901-1000 
2501-2600 
2601-2700 
2701-2800 
2801-2900 
2901-3000 
10001-10100 
10101-10200 
10201-10300 
10301-10400 
10401-10500 


29501-29600 
29601-29700 
29701-29800 
29801-29900 
29901-30000 
100001-100100 
100101-100200 
100201-100300 
100301-100400 
100401-100500 


299501-299600 
299601-299700 
299701-299800 
299801-299900 
299901-300000 


The table below gives the squares and cubes of integers, n, where 1 = п = 499. 


оо чол ьо ы 


ee eee 
ово 


ыы 
чм 


Ni 
=o © 


N 
N 


TABLE 5 


427 


42875 
46 656 
50 653 
54 872 
59 319 


64 000 
68 921 
74 088 
79 507 
85 184 


91 125 
97 336 
103 823 
110 592 
117 649 


125 000 
132 651 
140 608 
148 877 
157 464 


166 375 
175 616 
185 193 
195 112 
205 379 


216 000 
226 981 
238 328 
250.047 
262 144 
274 625 
287 496 
300 763 
314 432 
328 509 


428 


4900 
5.041 
5 18+ 
5 329 
5476 


5625 
5776 
5929 
6 084 
6241 


6 400 
6 561 
6 724 
6 889, 
7056 
7225 
7396 
7569 
7744 
7920 
8 100 
8 281 
8464, 
8649 
8 836 


9025 
9 216 
9 409 
9 604 
9 801 


10 000 
10 201 


10 404. , 


10 609. 
10 816 


11025 
11236 
11449 
11664 
11881 


343 000 
357911 
373248 
389 017 
405 224 


321875 
438 976 
456 533 
474 552 
493 039 


512 000 
531 441 
551 368 
571 787 
592 704 
613 125 
636 056 
658 503 
681 472 
704 969 
729 000 
753 571 
778 088 
804 357 
830 584 


857 375 
884 736 
912 673 
941 192 
970 299 


1 000 000 
1030 301 
1061 208 
1092 727 
1 124 864 


1157 625 
1191016 
1225 043 
1259712 
1295 029 


12 100 
12321 
12 544 
12769 
12 996 
13225 
13 456 
13 689 
13 924 
14 161 


14 400 
14 641 
14 884 
15 129 
15 376 
15 625 
15 876 
16 129 


` 16 384 


16 641 
16 900 
17 161 
17424 
17 689 
17956 
18 225 
18 496 
18 769 
19 044 
19 321 


19 600 


19 881 


20 164 
29 449 
20 736 


21025 ' 


21316 
21609 
21 904 
22 201 


Tables 


1331 000 
1367 631 
1 404 928 
1442 897 
1481 544 


1 520 875 
1 560 896 
1 601 613 
1 643 032 
1 685 159 


1 728 000 
1 771 561 
1815 848 
1 860 867 
1906 624 


1953 125 
2000 376 
2 048 383 
2097 152 
2 146 689 


2 197 000 
2 248 091 
2 299 968 
2352 637 
2 406 104 


2 460 375 
2515456 
2571 353 
2628072 
2685 619 


2 744 000 
2 803 221 
2 863 288 
2 924 207 
2 985 984 


3 048 625 
3 112 136 
3.176 523 
3 241792 
3 307 949 


3 375 000 
3442951 
3511808 
3581 577 
3 652 264 


3725875 
3 796 416 
3 869 893 
3 944 312 
4 019679 


4 096 000 
4 173 281 
4 251 528 
4 330 747 
4 410 944 


4 492 125 
4 574 296 
4 657 463 
4 741 632 
4 826 809 


4 913 000 
5000211 
5 088 448 
5117717 
5 268 024 


5 359 375 
5 451776 
5 545 235 
5 639 752 
5 735 339 


5 832 000 
5929741 
6 028 568 
6 128 487 
6 229 504 


6 331 625 
6 434 856 
6 539205 
6644 672 
6 751 269 


429 


6 859 000 
6 967 871 
7 077 888 
7 189 057 
7 301 384 


7414 875 
7529 536 
7645 373 
7 762.392 
7 880 599 


8 000.000 
8 120 601 
8 242 408 
8 365 427 
8 489.664 
8 615125 
8 741 816 
8 869 743 
8998 912 
9129329 


9 261 000 
9 393.931 
9 5281128 
9 663.597 
9 800 344 


9938375 
10 077 696 
10 218313 
10 360.232 
10 503.459 


10 648 000 
10 793 861 
10941 048 
11 089 567 
11 239424 


11 390 625 
11545176 
11697 083 
11852 352 
12 008 989 


430 


12 167000 
12 326 391 
12 487 168 
12 649 337 
12 812 904 


12 977 875 
13 144 256 
13 312'053 
13 481 272 
13 651919 


13 824 000 
13 997 521 
14 172 488 
14 348 907 
14 526 784 


14 706 125 
14 886 936 
15 069 223 
15 252 992 
15 438 249 


15 625 000 
15 813 251 
16 003 008 
16 194 277 
16 387 064 


16 581 375 
16 777 216 
16 974 593 
17 173 512 
17 373 979 


17 576 000 
17 779 581 
17 984 728 
18 191 447 
18 399 744 


18 609 625 
18 821 096 
19 034 163 
19 248 832 
19 465 109 


Tables 


19 683 000 
19 902 511 
20 123 648 
20 346 417 
20 570 824 


20 796 875 
21 024 576 
21 253 933 
21 484 952 
21 717 639 


21 952 000 
22 188 041 
22 425 768 
22 665 187 
22 906 304 


23149 125 
23 393 656 
23 639 903 
23 887 872 
24 137 569 


24 389 000 
24 642 171 
24 897 088 
25 153 757 
25 412 184 


25 672 375 
25 934 336 
26 198 073 
26 463 592 
26 730 899 


27 000 000 
27 270 901 
27 543 608 
27 818 127 
28 094 464 


28 372 625 
28 652 616 
28 934 443 
29 218 112 
29 503 629 


| 


Tables 


TABLE 5 


n n 


т 


п 


n 


431 


т 


310 96 100 29 791 000 350 122 500 42 875 000 


311 96 721 
312 97 344 
313 97 969 
314 98 596 
315 99 225 
316 99 856 
317 100 489 
318 101 124 
319 101 761 
320 102 400 
321 103 041 
322 103 684 
323 104 329 
324 104 976 
325 105 625 
326 106 276 
327 106 929 
328 107 584 
329 108 241 
330 108 900 
331 109 561 
332 ‚ 110 224 
333 110 889 
334 111 556 
335 112 225 
336. 112 896 
337 113 569 
338 114 244 
7339 114 921 
340 115 600 
341 116 281 
342 116 964 
343 117 649 
344 118 336 
345 119 025 
346 119 716 
347 120 409 


30.080 231 
30 371 328 
30 664 297 
30 959 144 


31 255 875 
31 554 496 
31855 013 
32 157 432 
32 461 759 


32 768 000 
33 076 161 
33 386 248 
33 698 267 
34 012 224 


34 328 125 
34 645 976 
34 965 783 
35 287 552 
35 611 289 


35 937 000 
36 264 691 
36 594 368 
36 926 037 
37 259 704 


37 595 375 
37 933 056 
38 272 753 
38 614 472 
38 958 219 


39 304 000 
39 651 821 
40 001 688 
40 353 607 
40 707 584 


41 063 625 
41 421736 
41 781925 


351 
352 
353 
354 


355 
356 
357 
358 
359 


360 
361 
362 
363 
364 


365 
366 
367 
368 
369 


370 
371 
372 
373 
374 
375 
376 
377 
378 
379 


380, 
381 


387 


123 201 
123 904 
124 609 
125 316 


126 025 
126 736 
127 449. 
128 164 
128 881 


129 600 
130 321 
131 044 
131 769 
132 496 


133 225 
133 956 
134 689 
135 424 
136 161 


136 900 
137 641 
138 384 
139 129 
139 876 


140 625 
141 376 
142 129 
142 884 
143 641 


144 400 
145 161 
145 924 
146 689 
147 456 


148 225 
148 996 
149 769 


43 243 551 
43 614 208 
43 986 977 
44 361 864 


44 738 875 
45 118016 
45 499 293 
45 882 712 
46 268 279 


46 656 000 
47 045 881 
47 437 928 
47 832 147 
48 228 544 


48 627 125 
49 027 896 
49 430 863 
49 836 032 
50 243 409 


50.653 000 
51 064 811 
51 478 848 
51895 117 
52 313 624 


52 734 375 
53 157 376 
53 582 633 
54 010 152 
54 439 939 


54 872 000 
55 306 341 
55 742 968 
56 181 887 
56 623 104 


57 066 625 
57 512 456 
57 960 603 


348 121 104 42 144 192 388 150 544 58411072 
349 121 801 42 508 549 389 151321 58 863 869 


432 


152 100 
152 881 
153 664 
154 449 
155 236 


156 025 
156 816 
157 609 
158 404 
159 201 


160 000 
160 801 
161 604 
162 409 
163 216 


164 025 
164 836 
165 649 
166 464 
167 281 


168 100 
168 921 
169 744 
170 569 
171 396 


172 225 
173 056 
173 889 
174 724 
175 561 


176 400 
177 241 
178 084 
178 929 
179 776 


180 625 
181 476 
182 329 
183 184 
184 041 


59 319 000 
59 776 471 
60 236 288 
60 698 457 
61 162 984 


61 629 875 
62 099 136 
62 570 773 
63 044 792 
63 521 199 


64 000 000 
64 481 201 
64 964 808 
65 450 827 
65 939 264 


66 430 125 
66 923 416 
67 419 143 
67 917 312 
68 417 929 


68 921 000 
69 426 531 
69 934 528 
70 444 997 
70 957 944 


71 473 375 
71 991 296 
72 511 713 
73 034 632 
73 560 059 


74 088 000 
74 618 461 
75 151 448 
75 686 967 
76 225 024 


76 765 625 
77 308 776 
77 854 483 
78 402 752 
78 953 589 


184 900 
185 761 
186 624 
187 489 
188 356 


189 225 
190 096 
190 969 
191 844 
192 721 


193 600 
194 481 
195 364 
196 249 
197 136 


198 025 
198 916 
199 809 
200 704 
201 601 


202 500 
203 401 
204 304 
205 209 
206 116 


207 025 
207 936 
208 849 
209 764 
210681 


211 600 
212521 
213 444 
214 369 
215 296 


216 225 
217 156 
218 089 
219 024 
219 961 


Tables 


79 507 000 
80 062 991 
80 621 568 
81 182 737 
81 746 504 


82 312 875 
82 881 856 
83 453 453 
84 027 672 
84 604 519 


85 184 000 
85 766 121 
86 350 888 
86 938 307 
87 528 384 


88 121 125 
88 716 536 
89 314 623 
89 915 392 
90 518 849 


91 125 000 
91 733 851 
92 345 408 
92 959-677 
93 576 664 


94 196 375 
94 818 816 
95 443 993 
96 071 912 
96 702 579 


97 336 000 
97 972 181 
98 611 128 
99 252 847 
99 897 344 


100 544 625 
101 194 696 
101 847 563 
102 503 232 
103 161 709 


€—— 


Tables 


220 900 
221 841 
222 784 
223 729 
224 676 


225 625 
226 576 
227 529 
228 484 
229 441 


230 400 
231 361 
232 324 
233 289 
234 256 


103 823 000 
104 487 111 
105 154 048 
105 823 817 
106 496 424 


107 171 875 
107 850 176 
108 531 333 
109 215 352 
109 902 239 


110 592 000 
111 284 641 
111980 168 
112 678 587 
113 379 904 


235 225 
236 196 
237 169 
238 144 
239 121 


240 100 
241 081 
242 064 
243 049 
244 036 


245 025 
246 016 
247 009 
248 004 
249 001 


` 433 


114 084 125 
114 791 256 
115 501 303 
116 214 272 
116 930 169 


117 649 000 
118 370 771 
119 095 488 
119 823 157 
120 553 784 


121 287 375 
122 023 936 
122 763 473 
123 505 992 
124 251 499 


434 : Tables 


TABLE 6 


La 


s 


Tode de X o4 Xo 


t9 00 QN QN OF) FU IO O6 ds омы XX X d ть ы 


1 
2 
2 
3 
2 
4 
2 
4 
3 
4 
2 
6 
2 
4 
4 
5 
2 
6 
2 
6 12 
4 
4 
2 
8 
3 
4 
4 
6 
2 
8 
2 
6 
4 
4 
4 
9 
2 
4 
4 
8 


5 


Tables 435 


TABLE 6 


EXE 


Talo pape] = [lo] 

T. 0 91 4 72. 

82 40 Tus .92 6 44 
83 E 4 
84 0 4 
85 1 4 
86 1 12 
87 1 2 
88 0 6 
89 ra 6 
o 9 


Answers to Selected Problems 


Section 1.1 
5. (a) 4,5,and7 
(b) (3. 2)! 3121, (3 + 2)! # 3! + 2! 


Section 1.3 

5. (a) & = 21 апа 5 = 15 

6. (b) 12 = 1, 62 = h, 204 = ty 
m. (b) &5tTt5t—tntt5 


Section 2.3 
1. 1,9,and 17 
2. (a) х=4у=-3 (b х=бу=-1 
(с) х=7у=-3 (d). х= 39, у=-29 
8. 32,461, 22,338, and 23,664 
12. x= 171, y = 114,z = —2 


Section 2.4 
2. (a) x=20+ 94 y= –15 – 7: 
(b) x= 18 + 234 y= —3 — 4t 
(c) х= 176 + 354, y = —1111 — 221¢ 
3. (а) х= 1,у= 4 
(b) х= 2, у = 38; х = 9, у = 20; х = 16, у= 2 
(с) No solutions 
(d) х= 17 — 57t, y= 47 — 1581 where t < 0 
5. (b) x=8+ 2k, y= —48 — 15k — 5t z = 16 + 5k + 2t 
6. (a) The fewest coins are 3 dimes and 17 quarters, while 43 dimes 
and 1 quarter give the largest number. It is possible to have 
13 dimes and 13 quarters. 
(b) There may be 40 adults and 24 children, or 45 adults and 12 
children, or 50 adults. 
(c) six 6s and ten 9s. 
7. There may be 5 calves, 41 lambs, and 54 pigs; or 10 calves, 22 lambs, 
and 68 pigs; or 15 calves, 3 lambs, and 82 pigs. 
8. $10.21 
9. (b) 28 pieces is one answer. 
(d) One answer is 1 man, 5 women, and 14 children. 
(e) 56 апа 44 


437 


438 Answers to Selected Problems 


Section 3.1 
2. 25 is a counterexample. 
7. All primes = 47. 

11. (a) 2" — 1 is prime. 


Section 3.2 
11. 59 — 53 = 53 — 47,157 — 151 = 163 — 157 
13. (b) Ry = 11.41. 271. 9091 


Section 3.3 

3. 2апа 5 

11. 522) = 23 . 67 

14. 71, 13859 

16. 37 = -14+2434+5+7+411 - 13 + 17 — 19 + 23 — 29 
+ 31,31 = -1+2-3+5-7-114+13 + 17-19 - 23 
+ 2(29). 

19. 81=3+5 + 73 
. 125=5+13+ 107 

28. (b) n=1 


Section 4.2 
4. (a) 4and6 (b) 0 


Section 4.3 

2. 89 

5. (a) 9 (b 4 (с) 5 (d) 9 
7 


10. x=7,y=8 

11. 143 

14. n=1,3 

20. № 3.7. 11.13.37 
22. x=3,y=2 

23. x - 2,y- 1,2= 2 


Section 4.4 
1. (a) x= 18 (mod 29) (b) x= 16 (mod 26) 
(c) x= 6, 13, and 20 (mod 21) (d) No solutions 
(e) x= 45, 94 (mod 98) (0 x = 16, 59, 102, 145, 188, 


231, and 274 (mod 301) 
2. (à х= 15 +515у= —1— 4 
(b) x= 13 + 254 у=7- 12t 
(c) х= 14+ 534 y - 1-4 5t 


a 


mv 


Answers to Selected Problems 


3. x=11 + t (mod 13), у= 5 + 6t (mod 13) 


17. $(n) = 16 when я = 17, 32, 34, 40, 48, and 60. ф(п) = 24 when 


4. (a) х== 52 (тоа 105) (b) x= 4944 (mod 9889) 
(c) x= 785 (mod 1122) (d) x= 653 (mod 770) 
5. x= 99 (mod 210) 
6. 62 
7. (а) 548,549,550 (b) 521350, 3:1351, 211352 
8. 119 
9. 301 
10. 3930 
14. 838 
15. (a) 17 (b) 59 (c) 1103 
16. п=1,7, 13 (mod 15) 
17. x=7, y £9 (mod 13) 
18. x=59, 164 (mod 210) 
Section 5.2 
1. (b) 127.83 (c) 691. 493 
3. 89.23 
4. 29. 17, 2925 . 13 
Section 5.3 
6. 1 
8. (b) x= 16 (mod 31), x= 10 (mod 11), x= 25 (mod 29). 
"Section 5.4 
8. 5,13 
11. 12,17;6,31 
Section 6.1 
2. 6, 6,300,402 
12. pand р*4; 48 = 25.3 
Section 6.3 
3. 249, 330 
5. (b) 1551, 1561, 1571, 1581, 159! 
8. (b) 36,396 
9. 405 
Section 7.2 
1. 720, 1152, 9600 


n — 35, 59, 45, 52, 56, 70, 72, 78, 84, and 90. 


440 Answers to Selected Problems 


Section 7.3 
ое 


6. (b) x= 19 (Mod 26), x= 34 (mod 40), x= 7 (mod 49) 


Section 7.4 

4. 1747, 157 

5. 253 

6. 2318 1932 1106 2197 1631 0337 1728 
7. REPLY NOW 

8. SELL SHORT 


Section 8.1 
1. (а) 8, 16, 16 
(b) 18, 18, 9 
(©). 21,11,22 
8. (с) 2" — 1 is prime; 2331229 — 1. 
12. (a) 3,7 (b) 3, 5, 6, 7, 10, 11, 12, 14. 
13. (b) 41, 239. 


Section 8.2 

2. 1,4, 11, 14; 8, 18, 47, 57; 8, 14, 19, 25. 

3. 2,6 = 2°, 7 == 27, 8; 
2, 3 = 213, 10 = 27, 13 = 25, 14 = 27, 15 = 2", 
5, 7 = 59, 10 = 55, 11 = 55, 14 = 5%, 15 = 57, 17 = 57, 19 = 515, 
20 == 55, 21 = 55, 

4. (a) 7,37. (b) 9, 10, 13, 14, 15, 17, 23, 24, 25, 31, 38, 40. 

5. 11, 50. 


Section 8.3 
1. (a) 7,11, 15, 19; 2, 3, 8, 12, 13, 17, 22, 23. 
(b) 2,5; 
2,5, 11, 14, 20, 23; 
2,5, 11, 14, 20, 23, 29, 32, 38, 41, 47, 50, 56, 59, 65, 68, 74, 77 
4. (b) 3. 
5. 6,7, 11, 12, 13, 15, 17, 19, 22, 24, 26, 28, 29, 30, 34, 35; 
7, 11, 13, 15, 17, 19, 29, 35, 47, 53, 63, 65, 67, 69, 71, 75. 
11. (b) x= 34 (mod 40), x= 30 (mod 77). 


Section 8.4 
1. ind,5 = 9, ind, 5 = 9, ind, 5 = 3, ind,, 5 = 3. 
2. (a) x=7(modi1). (b) х=5, 6 (mod 11). 
(c) No solutions. 


Answers to Selected Problems 441 


3. (а) x=6,7,10,11(mod17). (b) х=5 (mod 17). 
(c) х== 3,5 5,6,7 7, 10,11, 12, 14 (mod 17). (d) х= 1 (mod 16). 
4. 14. 
8. (a) In each case, а = 2, 5, 6. 
(b) 1,61 а= 10; 1, 5, 8, 12. 
12. Only the first equation has a solution. 
16. (b) x= 3.7, 11, 15 (mod 16); x= 8, 17 (mod 18). 
17. b=1,3,9 (mod 13). 


Section 9.1 
1. (а) х=б,9 (mod11) (b) x= 4, 6 (mod 13) 
(c) х=9, 22 (mod 23) 
8. (b) 6,11; 17, 24 
11. (a) 1,4,5, 6, 7, 9, 11, 16, 17 
(b) 1,4, 5, 6, 7, 9, 13, 16, 20, 22, 23, 24, 25, 28; 
1, 2, 4, 5, 7, 8, 9, 10, 14, 16, 18, 19, 20, 25, 28. 


Section 9.2 
1. (a) —1 (b 1 (O1 (d —i (e) 1 
2: ЕС — (6) (—1)* 

(d) (—1)5 (e) (-1» 


Section 9.3 

TQ D Шо 1. (d.1-(e1 

3. (a) Solvable (b) Notsolvable (c) Solvable 

6. p= 20r pz 1 (mod 4); p = 2 or p= 1 or 3 (mod 8); 
p = 20r p=1 (mod 6). 

8. 73 

15. х== 9, 16, 19, 26 (mod 35) 

7. che iL 

21. Not solvable 


Section 9.4 
1. (b) x= 57, 68 (mod 5°). 
2. (а) x= 13, 14 (mod 3°). (b) x= 42, 83 (mod 5*). 
(с) x= 108, 135 (mod 73). 
3. x= 5008, 9633 (mod 11‘). 
4. x= 122, 123 (mod 5*); x= 11, 15 (mod 3°). 
6. x= 41, 87, 108 (mod 27). 


442 Answers to Selected Problems 


7. (a) When a = 1, x=1, 7, 9, 15 (mod 2). 
When а = 9, x= 3, 5, 11, 13 (mod 2°). 
(b) When а = 1, x=1, 15, 17, 31 (mod 2°). 
When a = 9, x= 5, 13, 19, 29 (mod 2°). 
When а = 17, x= 7, 9, 23, 25 (mod 2°). 
(c) When а = 1, x= 1, 31, 33, 63 (mod 2°). 
When а = 9, x= 3, 29, 35, 61 (mod 2°). 
When a = 17, x= 7, 25, 39, 57 (mod 25). 
When a = 25, x= 5, 27, 37, 59 (mod 25). 
When а = 33, x = 15, 17, 47, 49 (mod 2°). 
When а = 41, x= 13, 19, 45, 51 (mod 2°). 
When а = 49, x= 7, 25, 39, 57 (mod 25). 
When a = 57, x= 11, 21, 43, 53 (mod 2°). 
9. (a) 4,4. (b) x23, 147, 453, 597 (mod 2 3 . 52). 
10. (b) х=51, 70 (mod 112). 


Section 10.1 

1. o(n) = 2160(2" — 1) # 2048(2" — 1) 
8. 56 

11. р’, pq 

14. (b) n=6 

16. No 


Section 10,2 
3. 233| My. 


Section 10.3 

3. (b) 3122" + 5. 

7. 2* + 1 = (2% — 25 + 1)(29 + 25 + 1) = 5 107367629 
+ 536903681. 

9. (c) 8312" + 1 and 591239 + 1. 

10. n = 315, р = 71, апад = 73. 

11. 312 +1. 


Section 11.1 
1. (a) (16, 12, 20), (16, 63, 65), (16, 30, 34). 
(b) (40, 9, 41), (40, 399, 401); (60, 11, 61), (60, 91, 109), 
(60, 221, 229), (60, 899, 901). 
8. (12,5, 13), (8, 6, 10). : 
12. (a) (3, 4,5), (20, 21, 29), (119, 120, 169), (696, 697, 985), 
(4059, 4060, 5741). 
(b) (& 2, 35), (да, fi, 1189), (Lass, гз, 30391). 
13. ty = 12, fa = 62, д, = 35%, ( = 2042, до = 1189". 


to Selected Problems K 44: 


оп 12.2 
113 = 72 + 82, 229 = 22 + 15°, 373 = 72 + 18%. 
- (a) 172+ 18? = 613. 
i (b) 3185 = 56? + 72, 39690 = 1892 + 63°, 62920 = 242° + 662. 
. 1105 =5. 13.17 = 9: + 322 = 12? + 312 = 23? + 243; note that 
325 = 52 . 13 = 12 + 18? = 6 + 17? = 10? +15. 
45 = 72 — 22 = 92 — 62 = 23? — 222. 
1729 = 1! + 123 = 93 + 10%. 
ction 12.3 
3. (2870) = (12 + 22 + 3? + ... + 202)? leads to 574? = 414? + 8? 
+ 16? + 242 + 322 +... + 1522. 
509 = 122 + 132 + 142, 
459 = 152 + 15? + 32. 
61 = 55 — 43, 127 = P- 6. 
231 = 15? + 22 + 12 + 12, 391 = 152 + 92 + 9? + 22, 2109 = 44? 
T 1224 52+ 22. 
рб = 3° 42 = 6 5%. 
290 = 132 + 112 = 16 + 52 + 32 = 14 + 92 + 3 + 2? = 157 
o +6:+ 42+ 32+ 22. 


ом, Uy Us, Hay Moy Ш. 
щу = 2и + lip шщ, = би, + (и, — i). 
My, Ha, Uy, Ин, Mio. 


50 = u, + urt uy, 75 = м + w фи, + ue, 100. = utu 
+ ue + и, 120 = и, + uy + и, 
(3, 4, 5), (5, 12, 13), (8, 15, 17), (39, 80, 89), (105, 208, 233). 


[75 1,1, 1, 2, 6}. ()‹[3; 3, 1,1, 3,2} (о) (153, 2, 3, 2). 
(0; 2, 1, 1, 3, 5, 3}: 

—710/457. (b) 741/170. (c) 321/460. 

073; Боа © [212.11 (0) (2; 5,1,2, 1,2]. 
1, 3/2, 10/7, 33/23, 76/53, 109/76. 

m3. 2.5/2, —7/57—12/5, — 43/18: 

0, 1/2, 4/9, 5/11, 44/97, 93/205. 

(b) 225 — 4.43 +4.10+3.3+2.1+2. 


444 Answers to Selected Problems 


7. (а) 1,3/2, 7/5, 17/12, 41/29, 99/70, 239/169, 577/408, 1393/985. 
= (b) 1, 2, 5/3, 7/4, 19/11, 26/15, 71/41, 97/56, 265/153. 
(c) 2, 9/4, 38/17, 161/72, 682/305, 2889/1252, 12238/5473, 
51841/23184, 219602/98209. 
(d). 2, 5/2, 22/9, 49/20, 218/89, 485/198, 2158/881, 4801/1960, 
21632/8721. 
(e) 2,3,5/2, 8/3, 37/14, 45/17, 82/31, 127/48, 590/223. 
9. [3: 7, 16, 11), (; 7, 15, 1, 26]. 
11. (a) х=-8+ 514 y = 3 — 19t 
(b) х= 58 + 2274 y= —93 — 364; 
(c) х= 48 + 5t, у= —168 — 187 
(d) х= —22 — 574 y = —61 — 158t 


Section 13.4 
1. @ awe (b) 1+7 (©) Ltym 


19 — y21 314 — V37 
(d) 10 (e) Е 


3. 5-2 V5 87 + V5 
2 Аб 
4. (а) (254. (b) р; LLLA. (о) [2;3). (d (2; 1, 3]. 
(e) [1;3,1,2, 1, 4]. 
(b) [52] [1 1, 2]. (3; 1, 6), (6; 12]. 
1677/433 
(а) 1264/465. 
(a) 34/27. (b) 301/239. 
11. 3,355/113. 


Section 13.5 

2. (а) х= 8,у= 3. (b) х= 10, у= 3. (с) х= 17, у= 4. 
(а) *=11,y=2. (е) х= 25, у= 4, 

3. (а) x= 3, y= 2; х= 17, y = 12; x = 99, у= 70. 
(b) x=2,9= l; x= 7, y= 4, x= 26, y = 15; x = 97, y = 56; 

х = 362, y = 209. 

(с) x= 9, y= 4; x= 161, y= 72. 

4. 48, 1680. 


нал 


Answers to Selected Problems 445 


5. 


(a) 
(b) 
(c) 
(a) 
(c) 
(a) 


(b) 
(c) 


x= 24, y = 5; x = 1151, y = 240. 

х = 51, у= 10; x = 5201, у = 1020. 

x = 23, y F 4; x = 1057, y = 184. 

x = 9801, y = 1820. (b) x = 2049, у = 320. 

x = 3699, y = 430. 

x= 18, у=5. (b) x=70,y= 13. (с) х= 32, у=5. 


. х= 449, y = 60; x = 13455, y = 1798. 


x = 254, y = 96; x = 4048, y = 1530. 
x = 213, y = 36; x = 2538, у = 429. 


absolute pseudoprime, 118, 
121 


abundant number, 269 
Adlerman, Leonard, 177 
Alcuin of York (735-804), 50, 
251 О 
algebraic number, 294 
amicable pair, 267, 269, 270 
triple, 270 
Anthoniszoon, Adriaen 
(1527-1617), 376 
Archimedes (287-212 в.с.), 
82, 375 
cattle problem, 391 
Meashirement of a Circle, 
375 
Archimedian property, 2 
Archimedian value of я, 375 
arithmetic function, 128 
Artin, Emil (1898-1964), 197 
Artin's conjecture, 197 
Aryabhata (2-476), 18 


Bachet, Claude (1587-1638), 
108, 109, 282, 317 
Barlow, Peter (1776-1862), 
262, 263 
Tbeory of Numbers, 262 
base for a number system, 91 
belonging to an exponent, 
184 


Bennett, G., 271 
Bernoulli, Daniel (1700- 
1782), 154, 155 
Bernoulli, Johann (1667 
1748), 109, 154 
Bernoulli, Nicolaus (1695- 
1726), 154, 155 
Bernoulli inequality, 9 
Bertrand, Joseph (1822- 
1900), 75 
Bertrand's conjecture, 75, 396 
Bhaskara (1114-1158?), 105 
binary number system, 91 
Binet formula, 343 
binomial coefficient, 10, 13, 
14, 18, 88, 120, 147, 


345 
binomial congruence, 207 
binomial theorem, 11 
Bombelli, Rafael (1526-2), 
347 


bracket function, 145 
arena p (598-?), 104, 


Index 


Brent, Richard, 175 

Brillhart, John, 274 

Brouncker, Lord William 
(1620-1684), 380, 
381, 382 

Brun, V., 68, 400 

Buchstab, A. A., 68 

Buell, Duncan, 276 


Caesar, Julius (110-44 в.с.), 
176, 177 
Caesar cipher, 176 
canonical form, 55 
Carlyle, Thomas (1795- 
1881), 221 
Carmichael, Robert D., 118 
Carmichael numbers, 118 
Carmichael's conjecture, 162 
Cataldi, Pietro (1548-1626), 
254 
Cauchy, Augustin-Louis 
(1789-1857), 214 
Chang, Ch'iu-chien (6th 
century), 48 
Mathematical Classic, 48 
Chen Jing-Run, 69 
Chinese Remainder Theorem, 
101, 167 
Cicero (106-43 в.с.), 176, 177 
Cipher, 175 
linear, 181 
ciphertext, 175 
Cole, Frank Nelson (1861- 
1926), 259 
common divisor, 27 
common multiple, 39 
complete set of residues, 83 
composite number, 52 
congruence, 82 
binomial, 207 
cancellation in, 86 
exponential, 212 
linear, 96 
polynomial, 92, 191 
Properties of, 84 
quadratic, 123, 214, 243 
simultaneous linear, 100 
solution of linear, 99 
continued fraction, 345 
convergent, 351 
finite simple, 346 
infinite simple, 362 
length, 364 
partial denominators, 346 
period, 364 
Periodic, 364 


447 


convergent of a continued 
fraction, 351 
denominator, 352 
numerator, 352 
Criterion, Euler's, 216 
cryptography, 175 
Cunningham, Allen Joseph 
(1842-1928), 263 


d'Alembert, Jean (1717 
1783), 81, 302 
decimal representation, 92 
decimal system, 92 
decrypting, 175 
Dedekind, Richard (1831- 
1916), 214 2 
deficient number, 269 
de la Vallee Poussin, Charles 
(1866-1962), 400 
de Polignac, C., 76 
Desargues, Gerard (1593- 
1662), 109 
Descartes, Rene (1596-1650), 
109, 268, 269, 302 
Dickson, Leonard Eugene 
(1874-1954), 323 
difference of cubes, 326 
difference of squares, 311, 
312, 315 
digits, 92 
diophantine equations, 43 
ax + by = c, 43, 356 
ах + by + cz = d, 49 
x! + y! = n, 309 
x? — y! = р, 110 
x! + y! = 23, 298 


хе + уе = 25, 282, 293 
Diophantus of Alexandria 
(circa 250), 42, 43, 
108, 109, 221, 303, 
316, 317, 347 
Arithmetica, 43, 108, 110, 
282, 296, 347, 392 
Dirichlet, Peter Gustav 
(1805-1859), 70, 214, 
218, 235, 293, 294 
Dirichlet's Pigeon-Hole 
Principle, 305 
Dirichlet's Theorem, 71 


448 


divides, 26 
divisibility criterion 
by 2, 4, 8, 2K, 94, 95 


by 7, 11, 13, 93, 95 
by 9,93 
Division Algorithm, 22 
divisors, 26 
common, 27 
greatest common, 27, 41 
harmonic mean of, 257 
number of, 130 
product of, 132 
sum of, 130 


Eisenstein, Ferdinand 
Gotthold (1823- 
1852), 214, 235 
Elkies, Noam, 324 
enciphering, 175 
exponent, 177 
modulus, 177 
‘encrypting, 175 
Enke, Johann (1791-1865), 


398 

Eratosthenes (276-196 B.C.), 
60, 391 

*sieve of, 60 

Euclidean Algorithm, 35 

Euclidean numbers, 61 

Euclid of Alexandria (circa 
350 в.с.), 17, 61, 108, 
251, 252, 283 

Elements, 17, 34, 43, 52, 

56, 61, 108, 251, 283. 

Euclid's formula for perfect 
numbers, 252 

Euclid's Lemma, 31 

Euler, Leonhard (1707-1783), 
18,50, 67, 75, 81, 114, 
154, 155, 156, 163, 
204, 221, 234, 235, 
252, 258, 265, 268, 
271, 275, 295, 302, 
303, 306, 317, 324, 
371, 372, 381, 382, 

398 


397, 
Euler's Criterion, 216 
Euler's Identity, 317 
Euler's phi-function, 156 
Euler's Theorem, 164, 166, 


belonging to, 184 
of prime in n!, 146 


ui , 205 
exponential congruence, 212 
factor, 26 
factorial, 7 
factorization into primes, 54 
Faltungs, Gerd, 294 


Fermat, Pierre de (1601— 
1665), 108, 109, 110, 
113, 154, 261, 268, 
269, 271, 282, 291, 
296, 302, 303, 306, 
316, 317, 379, 380, 
381, 382, 392 
Fermat numbers, 271, 277, 
278, 279, 313 
Fermat primes, 271 
Fermat's Conjecture, 282, 
293, 294, 295 
Fermat's factorization 
method, 110 
Fermat's Last Theorem, 114, 
282 
Fermat's Little Theorem, 114, 
165 
Fermat's Method of Infinite 
Descent, 291 
Fibonacci (1180-1250?), 330, 
35 
Liber Abaci, 330, 345 
Fibonacci numbers, 331 
Fibonacci sequence, 331 
Fields Medal, 403 
finite simple continued 
fraction, 346 
Frederick the Great (1712- 
1786), 155, 302 
Frenicle de Bessy, Bernhard 
(1605-1670), 113, 
379, 380, 381 
functions 
arithmetic, 128 
multiplicative, 133 
number-theoretic, 128 


zeta, 397 
Fundamental Theorem of 
Algebra, 81 
Fundamental Theorem of 

Arithmetic, 52, 54 


Gauss, Karl Friedrich (1777- 
1855), 80, 81, 82, 121, 
169, 197, 204, 214, 
221, 235, 272, 277, 
316, 398 
Disquisitiones 
80, 81, 


82, 197, 221, 235, 272 
Gauss's Lemma, 226 
Gauss's Theorem, 169 
gemarria, 16 
Girard, Albert (1595-1632), 
81, 306, 331 
Goldbach, Christian (1690- 
1764), 67, 75, 155 
Goldbach's Conjecture, 67, 
68, 69. 74, 75, 138, 
162 
Gostin, Gary, 276 
Med nema divisor, 27, 
1 


greatest integer function, 145 


Index 


Hadamard, Jacques ( 1865— 
1963), 400 

Hagis, Peter, 265 

Halley, Edmund (1656- 
1748), 302 

Halley's comet, 120 

Hamilton, William Rowan 
(1805-1865), 302 

Hardy, Godfrey Harold 
(1877-1947), 68, 315 

harmonic mean, 257 

Hilbert, David (1862-1943), 
323 

Holzmann, Wilhelm. See 
Xylander 

Hurwitz, Adolf (1859-1919), 
378 

Hurwitz, Alexander, 275 


Tamblichus of Chalcis (circa 
250-300), 268 

ideal numbers, 294 

incongruent, 83 

index of an integer, 206 

indicator, 156 

induction, mathematical, 5 

induction hypothesis, 5 

induction step, 5 

infinite descent, 291 

integers. ( See numbers) 


Jacobi, Carl Gustav (1804- 

1851), 214, 324 
Jacobi symbol, 242 
Jensen, К. L., 294 


Kanold, Hans-Joachim, 265 
k-perfect number, 257 
Kronecker, Leopold (1823- 
1891), 2, 80, 214 
Kummer, Ernst Eduard 
(1810-1893), 294 


» Joseph Louis 
(1736-1813), 75, 121, 
302, 303, 304, 317, 
322, 381 
Mecanique Analytique, 
302, 303 
Theorie des Fonctions 
Analytique, 303 
Legrange's four-square 
theorem, 322 
$ Theorem, 191 
парад. Н. (1728-1777), 


Lamé, abies (1795-1870), 


least common multiple, 39 
least positive residue, 83 


Laplace, Pierre Simon (1749- 
1827), 82, 302. 

lattice point, 236 

Law of Quadratic Reciprocity, 
235 


least common multiple, 39 
least positive residue, 83 
Legendre, Adrien-Marie 
(1752-1833), 204, 
221, 234, 235, 268, 
293, 302, 316, 398, 
401 
Elements de Geometrie, 
221 
Theorie des Nombres, 221, 
235, 398 
Legendre's formula, 147 
Legendre symbol, 222 
properties of, 222 
Leibniz, Gottfried (1646- 
1716), 109, 114, 121, 
302 
Lemma 
Euclid's, 31 
Gauss's, 226 
Thue's, 305 
Leonardo of Pisa. See 
Fibonacci 
linear combination, 28 
linear congruence, 96 
solution of, 97 
system of, 100 
linear diophantine equation, 
43 
Linnik, Y. V. (1915-1972), 


323, 324 

Liouville, Joseph (1809- 
1882), 323 

Liouville A-function, 145 

Littlewood, J. E. (1885- -1977), 
68, 401 

"АА integral, 398 
Lucas, Edouard (1842— 1891), 
Era 263, 275, 330, 


34 
Lucas numbers, 344, 345 
sequence, 7 
Luther, Martin (1483-1546), 
17 


McDaniel, Wayne, 265 
Maclaurin, Colin (1698- 
1746), 302 
(circa 850), 50 
Mangoldt function, 144 


1648), 110, 113, 258, 
259, 268, 271, 306 
Pbysica- 


Mathematica, 258 
> 


Mertens, Franz (1840-1927), 
144 

Mertens Conjecture, 144 

Mills, W. H. (1921- ), 74 

Mittag-Leffler, Gösta (1846- 
1927), 403 

Miyaoka, Yoiche, 294 

Möbius Inversion Formula, 
141 

Möbius p-function, 139 

Morehead, J., 274, 275 

Morrison, Michael, 274 

Muller, Johannes. (See 
Regiomontanus) 

multiple, 26 

least common, 39 

multiplicative function, 133 

multiplicatively perfect, 257 

multiply perfect, 257 


Newton, Isaac (1642-1727), 
82, 109, 379 

Nichols, Laura, 263 

Nicomachus of Gerasa (circa 
100), 18, 100, 251 

Introductio Arithmeticae, 

100, 251 

Nobel, Alfred (1833-1896), 
403 


Nobel Prize, 403 
Noll, Curt, 263 
nonresidue, quadratic, 215 
numbers 
absolute pseudoprime, 
118 


abundant, 269 
algebraic, 294 

amicable, 267 
Carmichael, 118 
composite, 52 
congruent, incongruent, 

82,85 

deficient, 269 
Euclidean, 61 


multiplicatively perfect, 
257 


multiply perfect, 257 
odd perfect, 265 
palindromic, 95 
perfect, 250 

prime, 52 
pseudoprime, 117 
relatively prime, 30 
repunit, 64 


449 


odd number, 24 

odd perfect number, 265, 
270, 313 

Odlyzko, Andrew M., 144 

order of an integer, 184 


palindrome, 95 
Parkin, Thomas, 324 
partial denominator, 346 
Pascal, Blaise (1623-1662), 
13, 109, 302 
Traite du Triangle 
Arithmetique, 13 
Pascal's rule, 10 
Pascal's triangle, 11 
Pell, John (1611-1685), 382 
Pell's equation, 382, 391 
fundamental solution, 
388, 390 
positive solution, 382 
Pepin, T., 273 
Pepin's test, 273 
perfect numbers, 250, 256, 
258, 264 
odd, 265 
Pfaff, Johann Friedrich (1765- 
1825), 82 
phi-function, 156 
Piazzi, Giuseppe (1746- 
1826), 81 
Pigeon-hole Principle, 305 
place value notation, 91 ^ 
plaintext, 175 
Plutarch (circa 46-120), 18 
Pollard, J, M., 275 
polynomial congruences, 92, 
191 
Pope Leo X (1475-1521), 17 
Powers, R. E., 263 
Prime Number Theorem, 396, 
399, 400 
prime representing function, 
3, 
primes, 52 
in arithmetic progression, 
71,72 
contained in n!, 146 
factorization into, 54 
Fermat, 271 
of the form 4n + 1, 190, 
224 


of the form 4n + 3, 70 
of the form 5n — 1,241 
of the form 6n + 1, 190, 
241 
of the form 6n 4- 5, 75 
of the form 8n + 1, 190 
of the form 8n + 3, 241 
of the form 8n + 7, 230 
of the form k2® + 1, 277, 
278 
of the form 2kp + 1, 190 
of the form n! + 1, 125 
of the form р» + 1, 62 
of the form Ra, 64 
gaps between, 66, 67 
infinitude of, 61, 62, 65, 
160, 273, 279 


450 2 


Mersenne, 258 
pseudo, 117, 120, 277 
regular, 294 
repunit, 64 
twin, 66 
prime-triplet, 75 
primitive root, 187 
existence of, 204 
number of, 188 
pseudoprime, 117, 120, 277 
public-key cryptography, 177 
Pythagoras (569-500 B.C.), 
15, 16, 18, 56, 269, 
283 
Pythagorean equation, 283, 
285 


Pythagoreans, 15, 16, 56, 250, 
268 

Pythagorean triangle, 288, 
289, 290, 297, 299, 


343 
Pythagorean triple, 283 
primitive, 283 


quadratic congruence, 123, 
214, 243 
quadratic nonresidue, 215 
Quadratic Reciprocity Law, 
235 
generalized, 242 
quadratic residue, 215 
quotient in division, 22 


Ramanujan, $, (1887-1920), 
315 


recovery exponent, 179 
recursive sequence, 331 
reduced set of residues, 169 
Regiomontanus (1436-1473), 
105, 108, 325, 347 
Regius, Hudalrichus (fi. 
1535), 254 
Utriusque Arithmetices, 
254 
regular polygons, 272 
regular prime, 294 
relatively prime, 30 
remainder in division, 22 
Renyi, A. (1921-1976), 69 
repunit, 64, 65, 95, 190 
Riemann, George Friedrich 
(1826-1866), 400 
Riemann's Explicit Formula, 
400 
Riemann's Hypothesis, 400 
Rivest, R. L., 177 
R. $, A. cryptosystem, 177 
Rudolf, Christoff (circa 1500- 
1545), 50 


Saint Augustine (354-430), 
250 

Selberg, Alte (1917- ), 403 

Selfridge, John, 275 

Shamir, A., 177 

sieve of Eratosthenes, 60 

simple continued fraction, 
346 


simultaneous congruences, 
100 


Skewes, S., 401 

Skewes number, 401 

sociable chain, 270 

square-free integer, 58, 137, 
162, 174 

Sterling, James (1692-1770), 
302 


Steurwald, R., 265 
sum of cubes, 256, 326 
sum of two squares, 306, 309, 
310 
sum of three squares, 316, 
325 
sum of four squares, 320, 322, 
326 
sum of five squares, 326 
Sun-Tsu (circa 250), 100, 102 
superperfect number, 257 
Sylvester, James Joseph 
(1814-1897), 74, 267 
symbols 
al b, 26 
a! 6,26 
a= b (mod п), 82 
a= b (mod n), 83 
(a/b), 242 
(a/p), 222 
(da. . . азалао)Ь, 91 


e, 371, 372 
Е, 271 
glk), 322 
ССА), 324 
gcd( a,b), 27 
ind a, 206 
tem(a,6), 39 
A(n), 145 
A(n), 144 
Litax), 398 
My, 258 
M(n), 144 
a(n), 139 
nt7 


т.370, 371. 372, 375, 376 


Па» 131 
(n), 156 
Зин, 128 
a(n), 128 
ex), 139 
т(п), 128 
[a], 145 

$), 397 
x(p), 196 
(1/Р), 222 
(—1/p), 223 
(2/р), 228 
(—2/p), 240 
(3/p), 239 
(—3/p), 241 
(5/р), 241 
(6/р), 241 
(7/р), 241 


Index 


Thabit ibn Kurrah (826-901), 
268 


Thabit's rule, 268, 270 
Taylor, Brook (1685-1731), 
302 
Tchebychef, P. L. (1821- 
1894), 75, 399 
inequalities, 399 
te Riele, Herman J., 144 
Theon of Alexandria (circa 
370), 17 
Theorem 
Chinese Remainder, 101 
Dirichlet’s, 71 
Euclid's, 61 


lagrange's, 191 
Pepin's, 273 
Pythagoras's, 56 
Wilson's, 121 
Thue, Axel (1863-1922), 305 
Thue's Lemma, 305 
totient, 156 
triangles 
Pascal's, 11 
Pythagorean, 288 
triangular numbers, 18, 19, 
95, 105, 256, 290, 297, 
313, 314, 326, 327, 
337 
Tsu Chung-chin (430-501), 
376 
Turcaninov, А: 267 
twin primes, 66, 71, 138, 161, 
257, 278 


unique factorization, 54 
universal exponent, 205 


Vinogradov, A. 1., 68. 
Vinogradov, I. M. (1891— 
1983), 69 


Wallis, John (1616-1703), 
109, 379, 380, 381, 
382 
Opera Matbematica, 382 
Wang, Y., 69 
Waring. Edward (1734- 1798), 
121, 322 
Meditationes Algebraicae, 
121, 322 
Waring's Problem, 323 
Well Ordering Principle, 2 
Western, A. E., 274, 275 
Wilson, John (1741-1793), 
121 
Wilson's Theorem, 121, 199 


Xylander (1532-1576), 108 


Yih-hing, 105 

Young, Jeff, 276 

zeta function, 397 
zeros of, 400 
critical line, 400 


Dugundji, James 
Hardy, GH 
-Maddox, I J 
McCoy, Neal H 


Whitaker, ET — 


1 PUBLICATIONS ON 
TICS — 


n to Vector Analysis 5/e 


f Pure Mathematics 10/e 


| of Functional Analysis 2/e 
ion to Modern Algebra4/e — , 


c of Modern Analysis 4/е 


EP Www 


ISBN 81-85392-69-2 | 


